Date: Sat, 5 May 2007 15:16:59 +0200 From: Manuel Martini <list@manuelmartini.it> To: stable@freebsd.org Subject: gmirror security problem on jail env? Message-ID: <182867A9-ED5E-496B-980A-B70C4E90B836@manuelmartini.it>
next in thread | raw e-mail | index | archive | help
# uname -a
FreeBSD xxxxxxx 6.2-STABLE FreeBSD 6.2-STABLE #0: Wed Apr 11 14:58:49
CEST 2007 martin@xxxxx
# sysctl -a | grep jail
security.jail.set_hostname_allowed: 0
security.jail.socket_unixiproute_only: 1
security.jail.sysvipc_allowed: 0
security.jail.enforce_statfs: 2
security.jail.allow_raw_sockets: 0
security.jail.chflags_allowed: 0
security.jail.jailed: 1
# ls /dev
fd null ptyp1 ptyp3 ptyp5 stderr stdout ttyp1
ttyp3 ttyp5 zero
log ptyp0 ptyp2 ptyp4 random stdin ttyp0 ttyp2
ttyp4 urandom
# df
Filesystem 1K-blocks Used Avail Capacity Mounted on
/dev/mirror/gm0s1g 129719744 17056610 102285556 14% /
# gmirror status
Name Status Components
mirror/gm0 COMPLETE da0
da1
so I think I can do...
gmirror remove.. stop.. deactive...
inside jails!
it's true?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?182867A9-ED5E-496B-980A-B70C4E90B836>