From owner-freebsd-questions@FreeBSD.ORG Thu Oct 8 20:22:39 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5B6A1106568B for ; Thu, 8 Oct 2009 20:22:39 +0000 (UTC) (envelope-from pprocacci@datapipe.com) Received: from EXFESMQ01.datapipe-corp.net (exchange.datapipe.net [64.106.130.71]) by mx1.freebsd.org (Postfix) with ESMTP id 28A6F8FC19 for ; Thu, 8 Oct 2009 20:22:38 +0000 (UTC) Received: from [10.5.21.3] (192.168.128.24) by EXFESMQ01.datapipe-corp.net (64.106.130.71) with Microsoft SMTP Server id 8.1.393.1; Thu, 8 Oct 2009 16:12:09 -0400 Message-ID: <4ACE477E.1080107@datapipe.com> Date: Thu, 8 Oct 2009 15:11:42 -0500 From: Paul Procacci User-Agent: Thunderbird 2.0.0.23 (Windows/20090812) MIME-Version: 1.0 To: Content-Type: text/plain; charset="ISO-8859-1"; format=flowed Content-Transfer-Encoding: quoted-printable Subject: MAC and JAILS X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Oct 2009 20:22:39 -0000 Hey all, I'm trying to implement MAC within jails. however any attempt to do this from directly within the jail results in "Operation not Permitted" messages. With that, I assume root within the jail doesn't have any capabliities of defining his own policies. Can anyone confirm (or deny) this? Thanks, Paul This message may contain confidential or privileged information. If you ar= e not the intended recipient, please advise us immediately and delete this = message. See http://www.datapipe.com/emaildisclaimer.aspx for further info= rmation on confidentiality and the risks of non-secure electronic communica= tion. If you cannot access these links, please notify us by reply message a= nd we will send the contents to you.