Date: Tue, 11 May 2004 23:31:41 -0600 From: "Chad Leigh -- Shire.Net LLC" <chad@shire.net> To: freebsd-questions@freebsd.org Questions <freebsd-questions@freebsd.org> Subject: read only system file systems for jail Message-ID: <A618A1C2-A3D5-11D8-A0B4-003065A70D30@shire.net>
next in thread | raw e-mail | index | archive | help
Hi All I am playing around on 5.2-CURRENT and am setting up a system to run various programs inside of jails. Including allowing the users to ssh in etc. Is there a fundamental problem of having the following all be read-only file systems, with the noted exceptions? /bin /sbin /libexec /lib /usr /var note: /usr/local would not be readonly and /var/tmp would not be readonly It seems to work in my test jails but I was wondering about hidden problems or non obvious problems. note that users are not allowed root privilege and hence are not installing stuff into any of these hierarchies and no /usr/ports Thanks Chad
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?A618A1C2-A3D5-11D8-A0B4-003065A70D30>