Date: Tue, 18 Feb 2014 12:30:32 +0800 From: Phil Regnauld <regnauld@x0.dk> To: "A.J. 'Fonz' van Werven" <freebsd@skysmurf.nl> Cc: freebsd-stable@freebsd.org Subject: Re: Should I use jail? Message-ID: <20140218043032.GD81705@macbook.bluepipe.net> In-Reply-To: <20140217183927.GA6886@spectrum.skysmurf.nl> References: <CAA_8tFq7JNw0=nqz5ByyfJs8cyEu%2B5z%2Bsry=NESViegUSZBJ0Q@mail.gmail.com> <5300C998.7010508@gibfest.dk> <20140216142824.GA25883@spectrum.skysmurf.nl> <20140216151257.GP71201@macbook.bluepipe.net> <20140217183927.GA6886@spectrum.skysmurf.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
A.J. 'Fonz' van Werven (freebsd) writes: > > The problem with NIS (and by extension NFS) is rpcbind, which AFAIK cannot > run in a jail. I've never tried, and I see a number of older PRs about this. > What do you know: what was intended as a smartass comment that I almost > refrained from sending in the first place actually elicited a useful > response. Thank you very much for the suggestion, I'll look into that. :) > The main question would be which /dev entry provides (write) access to the > system clock, if that even goes through a /dev entry to begin with. A > quick look through /usr/src/sys didn't turn up anything. As pointed out, unless ntpd is sampling a PPS, you don't need a device. But apart from running ntpd within chroot, I don't think it's possible as adjtime won't allow jailed processes to set the clock (and there is no override for that). Ok, so the advice wasn't so useful after all - sorry! Cheers, Phil
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20140218043032.GD81705>