From owner-freebsd-hackers  Wed Oct 22 16:45:03 1997
Return-Path: <owner-freebsd-hackers>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id QAA10051
          for hackers-outgoing; Wed, 22 Oct 1997 16:45:03 -0700 (PDT)
          (envelope-from owner-freebsd-hackers)
Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25])
          by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id QAA10038;
          Wed, 22 Oct 1997 16:44:58 -0700 (PDT)
          (envelope-from danny@panda.hilink.com.au)
Received: (from danny@localhost)
	by panda.hilink.com.au (8.8.5/8.8.5) id JAA13299;
	Thu, 23 Oct 1997 09:44:14 +1000 (EST)
Date: Thu, 23 Oct 1997 09:44:14 +1000 (EST)
From: "Daniel O'Callaghan" <danny@panda.hilink.com.au>
To: "George M. Ellenburg" <gme@inspace.net>
cc: Charles Mott <cmott@srv.net>, freebsd-hackers@FreeBSD.ORG,
        freebsd-isp@FreeBSD.ORG
Subject: Re: Password files and virtual IP addresses
In-Reply-To: <01bcdf41$9f805fb0$f828cccf@caffeine>
Message-ID: <Pine.BSF.3.91.971023093155.524P-100000@panda.hilink.com.au>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-hackers@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

On Wed, 22 Oct 1997, George M. Ellenburg wrote:

> |
> |I do it by building virtual machines using a hacked inetd(8) which does a 
> |getsockname(2) followed by a chroot(2) to the virtual machine.  The vm 
> |needs to have ld.so and lib/* etc, etc, etc.  It is great for allowing 
> |telnet access to web sites while preventing customers from peeking at 
> |each other's stuff.

> What about the problem with "username re-use" with the effective UIDs of
> the users?  Wouldn't 'webmaster@somedomain.com' and
> 'webmaster@anotherdomain.com' effectively have the same UID (excluding
> Sendmail tables/ tricks)?  That is, if both users physically log in to the
> server with the user of 'webmaster'.  How would you bypass the UIDs
> physically recorded in the UFS directory structure? 

No.  You have separate /etc directories for each vm and you can use 
different uids.  Even if the uid is the same from one vm to another, how 
much does it matter?  It only matters in that you, the sysadmin, can't 
tell who owns a file specifically without doing a pwd to find out which 
vm you are in.

Danny