From owner-freebsd-jail@FreeBSD.ORG Tue Jan 27 21:01:48 2015 Return-Path: Delivered-To: jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 3F5DC44B for ; Tue, 27 Jan 2015 21:01:48 +0000 (UTC) Received: from mail-lb0-x232.google.com (mail-lb0-x232.google.com [IPv6:2a00:1450:4010:c04::232]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id AD0A7A5C for ; Tue, 27 Jan 2015 21:01:47 +0000 (UTC) Received: by mail-lb0-f178.google.com with SMTP id u10so15282866lbd.9 for ; Tue, 27 Jan 2015 13:01:45 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=bK8MFzVx7Muzi0sC5FQGEIECsYZzQsTH1sNrxMPjLDA=; b=1GzOZd3x6IjnT/mpRNYUBJ0H0PaR6TFr+D/na3+BtTNVilXDYYNSPI2F5XUmHWwkpI Al0DjTf8KGJDeBVlgiCbdv83UxnuP2BUC2XB8U/kLAIRwyrksJ9aq814ljN3+LCd22Rg MirV8OnX1K5EreEtkb7Afg/Fza11/aIuhUCFC7Cbihy9X1sgGo021M8kZyviK+VEmwox BlUxfmMpNi2pGjTzRWRcYr9yE716Lb6mEwMJdKfwPEL7WIF5NmbgUfQ1eEJ5PToJ162f 102ySYZWC2NcFY0tc4SkvSct9kPZ6X4S/og6S+OZ/4x1aonN/Uvls8z3g+38TNg5hu+m ZZJw== MIME-Version: 1.0 X-Received: by 10.112.12.65 with SMTP id w1mr4138135lbb.68.1422392505844; Tue, 27 Jan 2015 13:01:45 -0800 (PST) Received: by 10.25.16.220 with HTTP; Tue, 27 Jan 2015 13:01:45 -0800 (PST) In-Reply-To: <54C7F8ED.2020205@erdgeist.org> References: <20150127012347.GA4940@lonesome.com> <20150127141239.V77290@sola.nimnet.asn.au> <54C7958B.40007@gmail.com> <54C7C828.4070703@erdgeist.org> <14943.128.135.70.2.1422381245.squirrel@cosmo.uchicago.edu> <54C7D371.9010609@erdgeist.org> <13934.128.135.70.2.1422383293.squirrel@cosmo.uchicago.edu> <54C7F109.2040405@erdgeist.org> <54C7F8ED.2020205@erdgeist.org> Date: Wed, 28 Jan 2015 10:01:45 +1300 Message-ID: Subject: Re: preferred jail management tool From: Peter Toth To: Dirk Engling Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.18-1 Cc: jail@freebsd.org X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 27 Jan 2015 21:01:48 -0000 Dirk, I agree with most of that - but in many cases it comes down to simple things like: "the right tool for the right job". In my case there was a need to solve these issues with jails - relatively quickly - so I just decided to do it, instead of "wasting" time (unfortunately my life is very busy). I am not saying there are no better ways to tackle this in the community, I just needed a solution and decided to put it on Github to share it. Peter On Wed, Jan 28, 2015 at 9:45 AM, Dirk Engling wrote= : > On 27.01.15 21:37, Peter Toth wrote: > > > So to answer the question again, jail.conf or the standard rc.d/jail > > felt too limiting with a lot of these features simply missing. > > I completely agree, yet I think that it should not be up to third party > tools to implement those features independently and =E2=80=93 in worst ca= se =E2=80=93 > against the inventors intentions. That's why I tried to map everything > possible to what's there in rc.d/jail in ezjail. > > Laying out everything that needs to go into a proper jail config > container should be done here on the list and then implemented either in > a format that jail(8) can consume and that other tools can reliably modif= y. > > erdgeist >