Date: Tue, 11 May 2004 23:46:43 -0600 From: "Chad Leigh -- Shire.Net LLC" <chad@shire.net> To: freebsd-questions@freebsd.org Questions <freebsd-questions@freebsd.org> Subject: Re: read only system file systems for jail Message-ID: <BFD5657A-A3D7-11D8-A0B4-003065A70D30@shire.net> In-Reply-To: <A618A1C2-A3D5-11D8-A0B4-003065A70D30@shire.net> References: <A618A1C2-A3D5-11D8-A0B4-003065A70D30@shire.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On May 11, 2004, at 11:31 PM, Chad Leigh -- Shire.Net LLC wrote: > Hi All > > I am playing around on 5.2-CURRENT and am setting up a system to run > various programs inside of jails. Including allowing the users to ssh > in etc. > > Is there a fundamental problem of having the following all be > read-only file systems, with the noted exceptions? > > /bin > /sbin > /libexec > /lib > /usr > /var > > note: /usr/local would not be readonly and /var/tmp would not be > readonly > Sorry, the whole /var is not readonly. Sorry, I misread my notes... Chad > It seems to work in my test jails but I was wondering about hidden > problems or non obvious problems. > > note that users are not allowed root privilege and hence are not > installing stuff into any of these hierarchies and no /usr/ports > > Thanks > Chad > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?BFD5657A-A3D7-11D8-A0B4-003065A70D30>