From owner-freebsd-questions@FreeBSD.ORG Wed Feb 6 16:59:57 2013 Return-Path: Delivered-To: questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id 38ECD532 for ; Wed, 6 Feb 2013 16:59:57 +0000 (UTC) (envelope-from ml@my.gd) Received: from mail-wg0-f45.google.com (mail-wg0-f45.google.com [74.125.82.45]) by mx1.freebsd.org (Postfix) with ESMTP id BD797A19 for ; Wed, 6 Feb 2013 16:59:56 +0000 (UTC) Received: by mail-wg0-f45.google.com with SMTP id dq12so1278193wgb.12 for ; Wed, 06 Feb 2013 08:59:50 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=x-received:content-type:mime-version:subject:from:in-reply-to:date :cc:content-transfer-encoding:message-id:references:to:x-mailer :x-gm-message-state; bh=mQ+kQj8/ybRC8Fi4eqeGCJH39Er7hmzlEno+oZ9HAo8=; b=QuPeE/4o+6mYiaHEDzIksWSB2lPnGyOCe5IZip3LSfArVs4O9vrzCR9F0SpqwvXmvm Pvx3YFGwe8duUDL9CNAHf6EdXGa4t4YYq/D3E6faQiDh9s1v+HKPbVSg01VuE9BeBd1d jPbpPJkl9Po6OPtKQvG6I0m7/5bCB8jizMlXmC0BcqKUbyvyOpMiZRiSYf6LLTMpKWkC grgmrUlHcjyy2587gJ+c/l86JU2iV09D67xSeH7AppdAmet0ltd5oEmqVOUJpqTTK4s3 bDStS0eS3jtxeE0iahL4i09eTr/eXq9Yj4KqZN9PO3nW/3OTT64yB88tm2pjA4myNW2X q5sQ== X-Received: by 10.180.85.97 with SMTP id g1mr6387807wiz.29.1360169984583; Wed, 06 Feb 2013 08:59:44 -0800 (PST) Received: from dfleuriot-at-hi-media.com ([83.167.62.196]) by mx.google.com with ESMTPS id be1sm4417162wib.10.2013.02.06.08.59.42 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Wed, 06 Feb 2013 08:59:43 -0800 (PST) Content-Type: text/plain; charset=iso-8859-1 Mime-Version: 1.0 (Mac OS X Mail 6.2 \(1499\)) Subject: Re: setting MIBs on a per jail bases From: Fleuriot Damien In-Reply-To: <51128B7C.4090801@a1poweruser.com> Date: Wed, 6 Feb 2013 17:59:41 +0100 Content-Transfer-Encoding: quoted-printable Message-Id: <8C990E24-5EDC-47C9-A062-59DA47BB1102@my.gd> References: <5112874D.30500@a1poweruser.com> <3A0296FA-E6E1-41AD-8077-7648E6E57511@my.gd> <51128B7C.4090801@a1poweruser.com> To: Fbsd8 X-Mailer: Apple Mail (2.1499) X-Gm-Message-State: ALoCoQl5OSB29ytcqPt98TWaHOg1SnYoHDvDROkaR9Xxb1nUw+zYnwFbq+a9HTzQMEuyQBh1ZsYE Cc: FreeBSD questions X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 06 Feb 2013 16:59:57 -0000 On Feb 6, 2013, at 5:57 PM, Fbsd8 wrote: > Fleuriot Damien wrote: >> Running 8.3 here and the answer is no. >> On Feb 6, 2013, at 5:39 PM, Fbsd8 wrote: >>> Is there a way to set these MIBs >>> on a per jail bases? >>>=20 >>> allow.mount.nullfs >>> allow.raw_sockets >>> cpuset.id >>> securelevel >=20 > Rereading the "man jail" for 9.1 talks about securelevel as a jail = parammeter. So correct me if I an wrong. All the security.jail.param.* = MIBs are set in rc.conf or /etc/jail.conf file on a per jail bases by > changing the word "parm" to the jailname? >=20 I'm afraid I wouldn't know, I don't have a single 9.x box here. Does the man mention the secure level as a PER JAIL parameter, or as a = systemwide parameter applied only to jails ?