Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 12 Aug 2013 13:57:14 +0200
From:      David Demelier <demelier.david@gmail.com>
To:        =?UTF-8?Q?Trond_Endrest=C3=B8l?= <Trond.Endrestol@fagskolen.gjovik.no>
Cc:        Maciej Suszko <maciej@suszko.eu>, freebsd-questions@freebsd.org
Subject:   Re: sysvipc only for one jail
Message-ID:  <CAO%2BPfDfunKiUx=2SV678jZqzwWHoVPonUwi_MMyNvSJ_HCiUuQ@mail.gmail.com>
In-Reply-To: <alpine.BSF.2.00.1308121323550.90799@mail.fig.ol.no>
References:  <CAO%2BPfDe3VDRpK9ALrsvwxBcAyejfN85FRvMLU3Q4CKmMgkG3%2BA@mail.gmail.com> <20130811173341.6d1cb2e7@arsenic> <20130811173630.24ed528c@arsenic> <CAO%2BPfDct3aXrrszdWOOu7KUPaxVKrPvboJJn29ipKUS9pCo%2B_g@mail.gmail.com> <alpine.BSF.2.00.1308121323550.90799@mail.fig.ol.no>
next in thread | previous in thread | raw e-mail | index | archive | help 
2013/8/12 Trond Endrest=C3=B8l <Trond.Endrestol@fagskolen.gjovik.no>:
> On Mon, 12 Aug 2013 12:40+0200, David Demelier wrote:
>
>> 2013/8/11 Maciej Suszko <maciej@suszko.eu>:
>> > Maciej Suszko <maciej@suszko.eu> wrote:
>> > [...]
>> >>
>> >> You can specify different params for each jail using _parameters, for
>> >> example:
>> >>
>> >> jail_jailname_params=3D"allow.chflags=3D1 allow.sysvipc=3D1"
>> >
>> > Sorry, my mistake - it should be jail_jailname_parameters=3D of course=
.
>> > --
>> > regards, Maciej Suszko.
>>
>> Thanks for your message,
>>
>> However, I could not find this setting in the manual of rc.conf(5)
>> neither in /etc/rc.d/jail :(. It does not seems to be applied.
>
> Have a look at jail(8) and the last lines of /etc/default/rc.conf.
>
> --
> +-------------------------------+------------------------------------+
> | Vennlig hilsen,               | Best regards,                      |
> | Trond Endrest=C3=B8l,              | Trond Endrest=C3=B8l,             =
      |
> | IT-ansvarlig,                 | System administrator,              |
> | Fagskolen Innlandet,          | Gj=C3=B8vik Technical College, Norway, =
 |
> | tlf. mob.   952 62 567,       | Cellular...: +47 952 62 567,       |
> | sentralbord 61 14 54 00.      | Switchboard: +47 61 14 54 00.      |
> +-------------------------------+------------------------------------+

I see,

I've added what Maciej Suszko told me but the sysctls in the jail is
not set as it should be :

security.jail.param.allow.sysvipc: 0
security.jail.param.allow.chflags: 0

And thus, it's not enabled as postgresql tells:

creating template1 database in /usr/local/pgsql/data/base/1 ... FATAL:
 could not create shared memory segment: Function not implemented

Cheers,

--=20
Demelier David

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAO%2BPfDfunKiUx=2SV678jZqzwWHoVPonUwi_MMyNvSJ_HCiUuQ>