Date: Sun, 24 Aug 2014 17:41:32 -0400 (EDT) From: doug@safeport.com To: freebsd-questions@FreeBSD.ORG Subject: Re: updating ezjails with freebsd-update Message-ID: <alpine.BSF.2.00.1408241740340.73111@bucksport.safeport.com> In-Reply-To: <53FA18FD.1060309@a1poweruser.com> References: <alpine.BSF.2.00.1408240008220.65526@bucksport.safeport.com> <53FA18FD.1060309@a1poweruser.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 24 Aug 2014, Fbsd8 wrote: > doug@safeport.com wrote: >> As anyone who had tried this know the -u and -U options on update do not >> work. There is a post on the ejail mailing list that gives a roadmap. I am >> testing this and will post results if there is any interest. >> >> I trying to figure out this process I came across section 15.6 in the >> handbook. My question is about establishing a loopback interface to keep >> the jail activity off of the host. What is the impact of NOT doing this? >> There is no mention of this in the jail man page. Is this an oversite? >> > > You can disregard most of that new handbook jail ezjail section. > > First of all the current version of ezjail uses the /etc/rc.d/jail script > method. This method is depreciated in FreeBSD version 10.0 and scheduled to > be removed in FreeBSD version 10.1 or 11.0. The section should have contained > a red warning box informing the reader that this documentation only applies > to Freebsd 10 and older releases. > > On the subject of a jails loopback interface. Jails don't have loopback > interfaces or use them. Sure you can assign one but it's really a definition > error which the jail(8) program does not issue a error message for. All > reference to the loopback interface should be removed from this section as > its very mis-leading to the reader and unnecessary. > > I installed bind99 in a jail(8) jail with out any lo1 or 127.0.0.1 ip address > and it worked just fine. > > Adding a password to jails "root" user is a waste of time and effort. ezjail > already requires the user to have "root" access on the host before the > "ezjail-admin install" command will function. > > Editing the jail's /etc/hosts file and changing the ip address to the jails > ip address and adding the jailname to the localhost entries is totally > unnecessary. Jails work fine using the default hosts file. > > How can the handbook recommend using a utility tool that has a incomplete > manual which is missing details about the utilities sub-commands. > > In my opinion this new section should have never been added to the handbook > until after ezjail gets updated to use jail(8) and it's manual is updated to > contain details about all it's sub-commands. Thank you, most helpful _____ Douglas Denault http://www.safeport.com doug@safeport.com Voice: 301-217-9220 Fax: 301-217-9277
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?alpine.BSF.2.00.1408241740340.73111>