Date: Thu, 22 Oct 2009 14:08:16 +0200 From: Ed Schouten <ed@80386.nl> To: Dag-Erling =?iso-8859-1?Q?Sm=F8rgrav?= <des@des.no> Cc: FreeBSD Arch <arch@freebsd.org>, FreeBSD Jail <jail@freebsd.org> Subject: Re: Setting the jail identifier from /etc/rc.conf Message-ID: <20091022120816.GK1293@hoeg.nl> In-Reply-To: <86ljj4s6hj.fsf@ds4.des.no> References: <20091021222054.GJ1293@hoeg.nl> <86ljj4s6hj.fsf@ds4.des.no>
next in thread | previous in thread | raw e-mail | index | archive | help
--zH41lVBEV8cLJnCl Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi Dag-Erling, * Dag-Erling Sm=F8rgrav <des@des.no> wrote: > on the command line). There is no rc.conf variable for it, but you can > add "-n foo" to jail_foo_flags. Well, good enough I guess. I solved the entire getty thing by doing the following. I'm running a jail called small.80386.nl, which is a temporary install I had, to see what happens if you enable a lot of WITHOUT_* flags. /etc/devfs.rules: | [small_80386_nl=3D5] | add include $devfsrules_hide_all | add include $devfsrules_unhide_basic | add include $devfsrules_unhide_login | add path ttyv8 unhide /etc/rc.conf: | jail_small_flags=3D"-l -U root -n small_80386_nl" | jail_small_devfs_ruleset=3D"small_80386_nl" /etc/ttys: | ttyv8 "/usr/sbin/jexec small_80386_nl /usr/libexec/getty Pc" cons25 on se= cure --=20 Ed Schouten <ed@80386.nl> WWW: http://80386.nl/ --zH41lVBEV8cLJnCl Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (FreeBSD) iEYEARECAAYFAkrgSzAACgkQ52SDGA2eCwVjigCffgZ/9igGufiv9bxmc2QnCMAO PXYAn0ZF4o7g40qHvkiY6eAwjUtWhZic =uO5V -----END PGP SIGNATURE----- --zH41lVBEV8cLJnCl--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20091022120816.GK1293>