Date: Sun, 15 Feb 2004 17:42:09 +0100 From: Pawel Jakub Dawidek <pjd@FreeBSD.org> To: Julian Elischer <julian@elischer.org> Cc: cvs-all@FreeBSD.org Subject: Re: cvs commit: src/sys/kern kern_jail.c Message-ID: <20040215164209.GB14639@garage.freebsd.pl> In-Reply-To: <Pine.BSF.4.21.0402150831330.38635-100000@InterJet.elischer.org> References: <Pine.NEB.3.96L.1040215112750.56481A-100000@fledge.watson.org> <Pine.BSF.4.21.0402150831330.38635-100000@InterJet.elischer.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--NknGfcVoKMD30k4E Content-Type: text/plain; charset=iso-8859-2 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, Feb 15, 2004 at 08:34:21AM -0800, Julian Elischer wrote: +> > How about we wait three weeks and see if anyone complains on +> > freebsd-current about the loss of functionality -- if no one says +> > anything, we remove the sysctl? +>=20 +> In scripts I use the fact that "df /" in a jail returns the size of=20 +> some other filesystem to see if I'm in a jail. +> I've asked before for a simple sysctl to let me know if I'm in a jail +> but the response was generally -ve.. +> you sometimes need to be able to know you are in a jail so that you can +> know not to attempt things that are not permitted in jails.. +> (e.g. pings, or ifconfig'ing network interfaces) security.jail.jailed? Yes, it is important sometimes. With such sysctl we will be able to teach our start scripts to respect it. --=20 Pawel Jakub Dawidek http://www.FreeBSD.org pjd@FreeBSD.org http://garage.freebsd.pl FreeBSD committer Am I Evil? Yes, I Am! --NknGfcVoKMD30k4E Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (FreeBSD) iD8DBQFAL6FhForvXbEpPzQRAhM8AJ40hexLLuJamVbR6m8l5Ku5j4x4UQCghZTQ l39SpNDlGztqpix2zQysNqw= =UChD -----END PGP SIGNATURE----- --NknGfcVoKMD30k4E--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040215164209.GB14639>