From owner-freebsd-questions@FreeBSD.ORG Sun Aug 24 19:17:20 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id C4023EA4 for ; Sun, 24 Aug 2014 19:17:20 +0000 (UTC) Received: from relay.mailchannels.net (tkt-001-i389.relay.mailchannels.net [72.249.144.204]) by mx1.freebsd.org (Postfix) with ESMTP id C62CB3B8D for ; Sun, 24 Aug 2014 19:17:19 +0000 (UTC) X-Sender-Id: _forwarded-from|107.201.32.44 Received: from mail-24.name-services.com (ip-10-33-12-218.us-west-2.compute.internal [10.33.12.218]) by relay.mailchannels.net (Postfix) with ESMTPA id BB3126015F; Sun, 24 Aug 2014 16:55:32 +0000 (UTC) X-Sender-Id: _forwarded-from|107.201.32.44 Received: from mail-24.name-services.com (mail-24.name-services.com [10.227.41.147]) (using TLSv1 with cipher AES128-SHA) by 0.0.0.0:2500 (trex/5.2.12); Sun, 24 Aug 2014 16:55:33 GMT X-MC-Relay: Forwarding X-MailChannels-SenderId: _forwarded-from|107.201.32.44 X-MailChannels-Auth-Id: demandmedia X-MC-Ingress-Time: 1408899333097 Received: from [10.0.10.1] (107-201-32-44.lightspeed.bcvloh.sbcglobal.net [107.201.32.44]) by mail-24.name-services.com with SMTP; Sun, 24 Aug 2014 09:55:25 -0700 Message-ID: <53FA18FD.1060309@a1poweruser.com> Date: Sun, 24 Aug 2014 12:55:25 -0400 From: Fbsd8 User-Agent: Thunderbird 2.0.0.17 (Windows/20080914) MIME-Version: 1.0 To: doug@safeport.com Subject: Re: updating ezjails with freebsd-update References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-questions@FreeBSD.ORG X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 24 Aug 2014 19:17:20 -0000 doug@safeport.com wrote: > As anyone who had tried this know the -u and -U options on update do not > work. There is a post on the ejail mailing list that gives a roadmap. I > am testing this and will post results if there is any interest. > > I trying to figure out this process I came across section 15.6 in the > handbook. My question is about establishing a loopback interface to keep > the jail activity off of the host. What is the impact of NOT doing this? > There is no mention of this in the jail man page. Is this an oversite? > You can disregard most of that new handbook jail ezjail section. First of all the current version of ezjail uses the /etc/rc.d/jail script method. This method is depreciated in FreeBSD version 10.0 and scheduled to be removed in FreeBSD version 10.1 or 11.0. The section should have contained a red warning box informing the reader that this documentation only applies to Freebsd 10 and older releases. On the subject of a jails loopback interface. Jails don't have loopback interfaces or use them. Sure you can assign one but it's really a definition error which the jail(8) program does not issue a error message for. All reference to the loopback interface should be removed from this section as its very mis-leading to the reader and unnecessary. I installed bind99 in a jail(8) jail with out any lo1 or 127.0.0.1 ip address and it worked just fine. Adding a password to jails "root" user is a waste of time and effort. ezjail already requires the user to have "root" access on the host before the "ezjail-admin install" command will function. Editing the jail's /etc/hosts file and changing the ip address to the jails ip address and adding the jailname to the localhost entries is totally unnecessary. Jails work fine using the default hosts file. How can the handbook recommend using a utility tool that has a incomplete manual which is missing details about the utilities sub-commands. In my opinion this new section should have never been added to the handbook until after ezjail gets updated to use jail(8) and it's manual is updated to contain details about all it's sub-commands.