From owner-freebsd-questions@FreeBSD.ORG Mon Nov 13 00:23:11 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 802E916A403 for ; Mon, 13 Nov 2006 00:23:11 +0000 (UTC) (envelope-from scrappy@freebsd.org) Received: from hub.org (hub.org [200.46.204.220]) by mx1.FreeBSD.org (Postfix) with ESMTP id BF45743D69 for ; Mon, 13 Nov 2006 00:23:02 +0000 (GMT) (envelope-from scrappy@freebsd.org) Received: from localhost (unknown [200.46.204.220]) by hub.org (Postfix) with ESMTP id 5112111A2C4; Sun, 12 Nov 2006 20:23:02 -0400 (AST) Received: from hub.org ([200.46.204.220]) by localhost (mx1.hub.org [200.46.204.60]) (amavisd-new, port 10024) with ESMTP id 81307-08; Sun, 12 Nov 2006 20:23:02 -0400 (AST) Received: from ganymede.hub.org (blk-137-79-174.eastlink.ca [24.137.79.174]) by hub.org (Postfix) with ESMTP id DA06611A2C3; Sun, 12 Nov 2006 20:23:01 -0400 (AST) Received: from localhost (localhost [127.0.0.1]) by ganymede.hub.org (Postfix) with ESMTP id CD77F37136; Sun, 12 Nov 2006 20:23:05 -0400 (AST) Date: Sun, 12 Nov 2006 20:23:05 -0400 From: "Marc G. Fournier" To: Lowell Gilbert Message-ID: In-Reply-To: <44hcx47lqx.fsf@be-well.ilk.org> References: <7FF5BAB0C7346830548B5582@ganymede.hub.org> <44hcx47lqx.fsf@be-well.ilk.org> X-Mailer: Mulberry/4.0.6 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Content-Disposition: inline Cc: freebsd-questions@freebsd.org Subject: Re: mknod within a jail ... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 13 Nov 2006 00:23:11 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --On Sunday, November 12, 2006 10:00:54 -0500 Lowell Gilbert wrote: > "Marc G. Fournier" writes: > >> I'm playing with DTC right now, within a Jail ... and one of the steps to >> set it up is to run mknod to create devices for a chroot environment, >> which, of course, fail in a jail ... >> >> Is there any way around this? >> >> Mounting devfs isn't an option, since for each domain in the jail that gets >> created, it appears that it needs its own chroot env, with its own dev >> directory ... >> >> Am I really stuck? :( > > Why don't you run it on the jail filesystem, but from outside of the jail? The software we're trying to get working is DTC (ISP control panel), and what it does is builds a seperate chroot hierarchy per domain created so that the owner of the domain will be able to ssh in, but also so that any cgi's operate within that chroot environment ... So, the 'root' in the vServer would need to be able to do this each time a new domain is added, which means given *them* the ability to run a command on the base operating system ... - ---- Marc G. Fournier Hub.Org Networking Services (http://www.hub.org) Email . scrappy@hub.org MSN . scrappy@hub.org Yahoo . yscrappy Skype: hub.org ICQ . 7615664 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) iD8DBQFFV7rp4QvfyHIvDvMRArIEAKCbVw2ip55A5FQMngV8rn6l57uyogCcCMX9 hoIAGQ/SE6FNLmGs2jHLlg0= =ZJvL -----END PGP SIGNATURE-----