Date: Fri, 15 Feb 2013 16:40:09 -0700 From: Jamie Gritton <jamie@FreeBSD.org> To: Harald Schmalzbauer <h.schmalzbauer@omnilan.de> Cc: freebsd-jail@FreeBSD.org, freebsd-stable@FreeBSD.org Subject: Re: new jail(8) ignoring devfs_ruleset? Message-ID: <511EC759.4060704@FreeBSD.org> In-Reply-To: <511E61F5.1000805@omnilan.de> References: <511E61F5.1000805@omnilan.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On 02/15/13 09:27, Harald Schmalzbauer wrote: > Hello, > > like already posted, on 9.1-R, I highly appreciate the new jail(8) and > jail.conf capabilities. Thanks for that extension! > > Accidentally I saw that "devfs_ruleset" seems to be ignored. > If I list /dev/ I see all the hosts disk devices etc. > I set "devfs_ruleset = 4;" and "enforce_statfs = 1;" in jail.conf. > Inside the jail, > sysctl security.jail.devfs_ruleset returnes "1". > But like mentioned, I can access all devices... > > Thanks for any help, > > -Harry devfs_ruleset is only used along with mount.devfs - do you also have that set in jail.conf? - Jamie
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?511EC759.4060704>