Date: Wed, 28 Jan 2015 09:37:59 +1300 From: Peter Toth <peter.toth198@gmail.com> To: Dirk Engling <erdgeist@erdgeist.org> Cc: jail@freebsd.org Subject: Re: preferred jail management tool Message-ID: <CAEUAJxtQjUJEh%2Bz324utrY09FHTWVOwi0oegSv65%2B=-o48p66g@mail.gmail.com> In-Reply-To: <54C7F109.2040405@erdgeist.org> References: <CACfj5vKjiQHsy9VbOKFFcrBpyr3dmbkOOxTxCYhSyZrnrjRiaQ@mail.gmail.com> <CAHieY7TyxzC0aK-ErY2EbCmTJPykk_9G7Gd=CrZ9yxQ-77PynA@mail.gmail.com> <20150127012347.GA4940@lonesome.com> <20150127141239.V77290@sola.nimnet.asn.au> <54C7958B.40007@gmail.com> <54C7C828.4070703@erdgeist.org> <14943.128.135.70.2.1422381245.squirrel@cosmo.uchicago.edu> <54C7D371.9010609@erdgeist.org> <13934.128.135.70.2.1422383293.squirrel@cosmo.uchicago.edu> <CAEUAJxtctW_Ku4iQFWTKOsr=sABDtKEeKKVitFyFcxfUSp%2Bjig@mail.gmail.com> <54C7F109.2040405@erdgeist.org>
next in thread | previous in thread | raw e-mail | index | archive | help
What I was missing the most was a simple out of the box experience with safe defaults for the end user with the ability to change properties in an atomic fashion. Also, jail(8) or jail.conf is by no means a comprehensive tool for managing all jail aspects. A lot of new technologies emerged/matured in FreeBSD in the recent years, we have resource containers (rctl), ZFS, VIMAGE/VNET, cpuset - just to name a few. These are a blessing when it comes to managing/using jails. These (awesome) technologies really set FreeBSD apart from other Unix like operating systems - yet no integration points existed for jails. So to answer the question again, jail.conf or the standard rc.d/jail felt too limiting with a lot of these features simply missing. On Wed, Jan 28, 2015 at 9:11 AM, Dirk Engling <erdgeist@erdgeist.org> wrote: > On 27.01.15 21:01, Peter Toth wrote: > > > The most important part is jail(8) and properties can be passed to > jail(8) > > very easily. > > > > This is the very reason I stopped relying on any rc.d/jai or jail.conf > for > > iocage. It is much easier/simpler to add/modify features when dealing > with > > jail(8) directly. > > This means that you need to keep your config in yet another place. I > think it's much nicer to point a user to a defined location where he > would find everything that magically creates those jail containers at > system startup. > > I think that rc.d/jail and its config should provide all the means > necessary to describe the state of the system's jails after booting up. > If it doesn't, the tool is useless. Could you please explain what > features are missing in jail.conf for you to not use it? Maybe we can > layout a path to a better config abstraction. > > erdgeist >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAEUAJxtQjUJEh%2Bz324utrY09FHTWVOwi0oegSv65%2B=-o48p66g>