From owner-freebsd-questions@FreeBSD.ORG Thu Apr 24 15:18:11 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id C46B75F1 for ; Thu, 24 Apr 2014 15:18:11 +0000 (UTC) Received: from mail-pd0-f179.google.com (mail-pd0-f179.google.com [209.85.192.179]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 9BE1C1714 for ; Thu, 24 Apr 2014 15:18:11 +0000 (UTC) Received: by mail-pd0-f179.google.com with SMTP id g10so2036665pdj.10 for ; Thu, 24 Apr 2014 08:18:05 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=BhuibN2ctWBIesmarODBwi3AzAVa2tpqDMFAueFtQkY=; b=OBLen95oBN9ChKJ/rLLUi9tj/FFTmreSQ2YpFGJPRbMq981HGLaBwngV2BW7v+j448 U3RLs84WZcA4u6G3bA+HeEU6gQ4mw6ejOKKAXPGsTe93RqnkfU1vPpvA8Qvw2TmRsuD0 hnCJ0knJ6xCUinra7dlp2Xv63p4NxDEL9yD71fTXfkjtbkrQyMJlZYgmfkhrQp1aywXh qL6/JaDLOnqBmbl8A5m6VQqGrOdwSNqBgJUs7vvZSR7BAoLaAZisG4+rI1UNm6R50p1c dtq5GBOcWOHqnf3B3lr5K0hYED6hTWbYEWwAcAiE+6y7N5BSl76dijl+B4HNqcTEF+iv 1FvQ== X-Gm-Message-State: ALoCoQloABQem/2FTsHhDdJi5o9GqD99x+st/Cr532O/Ak0A6XcgQU+OjYUxgn48Ygf2XTE4lH/x MIME-Version: 1.0 X-Received: by 10.68.178.131 with SMTP id cy3mr4238921pbc.146.1398352685754; Thu, 24 Apr 2014 08:18:05 -0700 (PDT) Received: by 10.66.217.168 with HTTP; Thu, 24 Apr 2014 08:18:05 -0700 (PDT) In-Reply-To: <20140424090234.5636f9d19dbc478c9593e55b@yahoo.es> References: <20140424090234.5636f9d19dbc478c9593e55b@yahoo.es> Date: Thu, 24 Apr 2014 11:18:05 -0400 Message-ID: Subject: Re: FBSD jail versus VMWare? What services do YOU run in a jail? From: Alejandro Imass To: Eduardo Morras Content-Type: text/plain; charset=UTF-8 Cc: FreeBSD Questions X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Apr 2014 15:18:11 -0000 On Thu, Apr 24, 2014 at 3:02 AM, Eduardo Morras wrote: > On Tue, 22 Apr 2014 14:47:45 -0700 > "edflecko ." wrote: >> >> What type of services CAN be run from within a jail? > > I tried to run PostgreSQL8.4 (IIRC) in a jail under FreeBSD8.2. There were a lot of problems with SysV signals and semaphores (IIRC) and had to install it in host. Don't know if it's actually relevant. > Yes SYSV IPC is _potentially_ problematic but the workaround is usually easy if you just make sure that you don't repeat the uids of the apps using SYSV IPC. So to run Pg on more than one Jail what I do is just change the Pg user id by concatenating the default hid which is 70 to the last numbers of the IP address of the jail. So for example if the IP of the jail is 192.168.101.124 I would do this as soon as I install Pg on the Jail: pw usermod pgsql -u 70124 pw groupmod pgsql -g 70124 pw usermod pgsql -g 70124 chown -R pgsql /usr/local/pgsql/ chgrp -R pgsql /usr/local/pgsql/ That has worked for me and should work for any other application using IPC. Best, Alejandro Imass