Date: 22 Mar 2003 13:33:09 +1030 From: "Daniel O'Connor" <doconnor@gsoft.com.au> To: Terry Lambert <tlambert2@mindspring.com> Cc: Paco Hope <paco@cigital.com>, hackers@freebsd.org Subject: Re: ld.so and hard links Message-ID: <1048302188.39751.11.camel@chowder.dons.net.au> In-Reply-To: <3E7B7D84.F51A061C@mindspring.com> References: <3E7B43F8.6070405@cigital.com> <3E7B7D84.F51A061C@mindspring.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 2003-03-22 at 07:30, Terry Lambert wrote: > You could potentially save a lot of memory. *However*. You may > not want to do this, since you are defeating priviledge seperation > that is what made you want to use jails in the first place. There's a Linux Jail like thing called vserver, it has a feature where you hardlink a whole bunch of stuff for different jails (it has tools for building a set of jails from a given tree). It does a copy on write for any of these hardlinked files so you don't get the security issue. No idea if it's possible to implement something like that for a jail :) -- Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum GPG Fingerprint - 9A8C 569F 685A D928 5140 AE4B 319B 41F4 5D17 FDD5 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1048302188.39751.11.camel>