From owner-cvs-src@FreeBSD.ORG  Wed Apr  9 16:48:43 2003
Return-Path: <owner-cvs-src@FreeBSD.ORG>
Delivered-To: cvs-src@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 034BA37B401; Wed,  9 Apr 2003 16:48:43 -0700 (PDT)
Received: from fledge.watson.org (fledge.watson.org [204.156.12.50])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 111B743FBD; Wed,  9 Apr 2003 16:48:42 -0700 (PDT)
	(envelope-from robert@fledge.watson.org)
Received: from fledge.watson.org (fledge.pr.watson.org [192.0.2.3])
	by fledge.watson.org (8.12.9/8.12.9) with SMTP id h39Nn1YY031439;
	Wed, 9 Apr 2003 19:49:01 -0400 (EDT)
	(envelope-from robert@fledge.watson.org)
Date: Wed, 9 Apr 2003 19:49:00 -0400 (EDT)
From: Robert Watson <rwatson@FreeBSD.org>
X-Sender: robert@fledge.watson.org
To: Nate Lawson <nate@root.org>
In-Reply-To: <Pine.BSF.4.21.0304091639540.30429-100000@root.org>
Message-ID: <Pine.NEB.3.96L.1030409194655.31027C-100000@fledge.watson.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
cc: src-committers@FreeBSD.org
cc: cvs-src@FreeBSD.org
cc: Alfred Perlstein <bright@mu.org>
cc: cvs-all@FreeBSD.org
cc: Mike Barcroft <mike@FreeBSD.org>
Subject: Re: cvs commit: src/usr.bin/killall killall.1 killall.c
	src/usr.sbin Makefile src/usr.sbin/jail jail.8 jail.c
	src/usr.sbin/jexec Makefile jexec.8 jexec.c src/usr.sbin/jls
	Makefile jls.8 jls.c
X-BeenThere: cvs-src@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: CVS commit messages for the src tree <cvs-src.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-src>
List-Post: <mailto:cvs-src@freebsd.org>
List-Help: <mailto:cvs-src-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Apr 2003 23:48:43 -0000


On Wed, 9 Apr 2003, Nate Lawson wrote:

> On Wed, 9 Apr 2003, Alfred Perlstein wrote:
> > * Robert Watson <rwatson@FreeBSD.org> [030409 16:24] wrote:
> > > 
> > > On Thu, 10 Apr 2003, Pawel Jakub Dawidek wrote:
> > > > 
> > > > And there can't be names spoofing. (If, ofcourse '.' is invalid char in
> > > > jail name:)). 
> > > 
> > > Sounds reasonable to me, although a bit more trouble to parse and render
> > > :-).
> > 
> > And what kind of path seperator is '.'?
> 
> Exactly.  What you're describing would be better implemented as a
> pseudo-fs layer.  In fact, that would remove the need for separate j*
> utilities. 

I thought we were trying to get away from synthetic file systems with
terrible security properties.  In fact, we specifically toasted procfs
because it behaved so badly; kernfs went down the tubes because the
semantic match was very poor, and sysctl is in.

Robert N M Watson             FreeBSD Core Team, TrustedBSD Projects
robert@fledge.watson.org      Network Associates Laboratories