Date: Sun, 23 Mar 2003 01:59:44 +0300 (MSK) From: "."@babolo.ru To: "Daniel O'Connor" <doconnor@gsoft.com.au> Cc: Terry Lambert <tlambert2@mindspring.com>, Paco Hope <paco@cigital.com>, hackers@FreeBSD.ORG Subject: Re: ld.so and hard links Message-ID: <1048373984.431400.3536.nullmailer@cicuta.babolo.ru> In-Reply-To: <1048302188.39751.11.camel@chowder.dons.net.au>
next in thread | previous in thread | raw e-mail | index | archive | help
> On Sat, 2003-03-22 at 07:30, Terry Lambert wrote: > > You could potentially save a lot of memory. *However*. You may > > not want to do this, since you are defeating priviledge seperation > > that is what made you want to use jails in the first place. > > There's a Linux Jail like thing called vserver, it has a feature where > you hardlink a whole bunch of stuff for different jails (it has tools > for building a set of jails from a given tree). It does a copy on write > for any of these hardlinked files so you don't get the security issue. > > No idea if it's possible to implement something like that for a jail :) schg flag is sufficient to do impossible hardlinked files change in jail IMHO Or I forgot something? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1048373984.431400.3536.nullmailer>