From owner-freebsd-jail@FreeBSD.ORG Mon May 21 11:07:02 2007 Return-Path: X-Original-To: freebsd-jail@freebsd.org Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id EB02E16A46C for ; Mon, 21 May 2007 11:07:02 +0000 (UTC) (envelope-from shadow@itt.net.ru) Received: from mail.sevcity.net (ns.sevcity.net [193.47.166.213]) by mx1.freebsd.org (Postfix) with ESMTP id 64C1B13C44B for ; Mon, 21 May 2007 11:06:59 +0000 (UTC) (envelope-from shadow@itt.net.ru) Received: from mail.sevcity.net (service.sevcity [127.0.0.1]) by mail.sevcity.net (Postfix) with ESMTP id DBD04170053; Mon, 21 May 2007 13:42:58 +0300 (EEST) Received: from berloga.shadowland (umka.sevcity.net [193.47.166.138]) by mail.sevcity.net (Postfix) with ESMTP id 9DF0017002E; Mon, 21 May 2007 13:42:58 +0300 (EEST) Received: from berloga.shadowland (berloga.shadowland [127.0.0.1]) by berloga.shadowland (8.12.11.20060308/8.12.11) with ESMTP id l4LAgsUg006438; Mon, 21 May 2007 13:42:54 +0300 Received: (from root@localhost) by berloga.shadowland (8.12.11.20060308/8.12.11/Submit) id l4LAgshq006435; Mon, 21 May 2007 13:42:54 +0300 From: Alex Lyashkov To: Anish Mistry In-Reply-To: <200705172011.02573.amistry@am-productions.biz> References: <62B5EEB05787306A364B9E6E@ganymede.hub.org> <200705171642.14361.amistry@am-productions.biz> <64008E0D5292E1B60F5B3652@ganymede.hub.org> <200705172011.02573.amistry@am-productions.biz> Content-Type: text/plain Content-Transfer-Encoding: 7bit Organization: Home Message-Id: <1179744173.2922.15.camel@berloga.shadowland> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.5 (1.4.5-17) Date: Mon, 21 May 2007 13:42:53 +0300 X-Virus-Scanned: ClamAV using ClamSMTP Cc: freebsd-jail@freebsd.org Subject: Re: FreeVPS / Jail2 (Was: Re: Welcome to freebsd-jail ...) X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 May 2007 11:07:03 -0000 On Fri, 2007-05-18 at 03:10, Anish Mistry wrote: > On Thursday 17 May 2007, Marc G. Fournier wrote: > > --On Thursday, May 17, 2007 16:42:04 -0400 Anish Mistry > > > > wrote: > > > Does anyone know where the jail2 work fits in? > > > http://docs.freevps.com/doku.php?id=freebsd:index > > > > Good question ... the changelog doesn't appear to have changed > > since Sept 2006, so has the project died? > > > > Looking at Project Tasks, though, the two things I'm interested in > > playing with right now (CPU / Memory limits) appear have 'get from > > SoC' as its state, so I'm guessing that the overall plan is to > > incorporate Chris' work ... > > > > But, he's got alot of stuff in there that go way above and beyond > > .. the SysV stuff being desired for PostgreSQL server(s) in jails > Alex would if be possible to provide a patch for just the SYSV IPC > stuff? I'd be happy to help test that since I just got a project > that will need it come July. > Also if you have a Google Checkout account (Free to setup and free > transactions until the end of the year) I can donate some cash. Anish, After Sept 2006, project moved into p4 for development as jail2 (//depot/projects/jail2/), but you a right development speed is down because I change an employer. Currently this stay in finish virtualization private module data and implement jail init stuff similar SYSINIT/SYSUNIT macros. Hm.. As say about SYSV IPC stuff you say about only virtualization? or also about limits? "virtualization" is easy, but for limits - need more work, because currently jail don't have jail0 (root jail) and methods for set jail variables. -- Alex Lyashkov Home From owner-freebsd-jail@FreeBSD.ORG Tue May 22 01:07:41 2007 Return-Path: X-Original-To: freebsd-jail@freebsd.org Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id BDD3C16A46B for ; Tue, 22 May 2007 01:07:41 +0000 (UTC) (envelope-from freebsd@hub.org) Received: from hub.org (hub.org [200.46.204.220]) by mx1.freebsd.org (Postfix) with ESMTP id 8387013C458 for ; Tue, 22 May 2007 01:07:41 +0000 (UTC) (envelope-from freebsd@hub.org) Received: from localhost (unknown [200.46.204.191]) by hub.org (Postfix) with ESMTP id 01FB2118AC02; Mon, 21 May 2007 21:57:32 -0300 (ADT) Received: from hub.org ([200.46.204.220]) by localhost (mx1.hub.org [200.46.204.191]) (amavisd-maia, port 10024) with ESMTP id 49097-02; Mon, 21 May 2007 21:57:37 -0300 (ADT) Received: from ganymede.hub.org (blk-89-241-126.eastlink.ca [24.89.241.126]) by hub.org (Postfix) with ESMTP id D2BB0118AC01; Mon, 21 May 2007 21:57:31 -0300 (ADT) Received: from localhost (localhost [127.0.0.1]) by ganymede.hub.org (Postfix) with ESMTP id 01D9839ACC; Mon, 21 May 2007 21:57:40 -0300 (ADT) Date: Mon, 21 May 2007 21:57:40 -0300 From: "Marc G. Fournier" To: Alex Lyashkov , Anish Mistry Message-ID: <424BA04B19D3AACE29F0B591@ganymede.hub.org> X-Mailer: Mulberry/4.0.8 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Content-Disposition: inline Cc: freebsd-jail@freebsd.org Subject: Re: FreeVPS / Jail2 (Was: Re: Welcome to freebsd-jail ...) X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 22 May 2007 01:07:41 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --On Monday, May 21, 2007 13:42:53 +0300 Alex Lyashkov wrote: > After Sept 2006, project moved into p4 for development as jail2 > (//depot/projects/jail2/), but you a right development speed is down > because I change an employer. > Currently this stay in finish virtualization private module data and > implement jail init stuff similar SYSINIT/SYSUNIT macros. First question ... what is 'p4'? Second ... you have two tasks on your list: Add CPU usage limits Add Total and resident memory size limit that are marked as 'get from SoC' ... is that based on Chris Jones' SoC work? Or is there another SoC project that this will be based on? Looking at your tasks list, there is alot in there as it is that would greatly improve jail usage ... I for one am keenly interested in the IPC work you've done, as it would greatly simplify my use of postgresql within a jail :) If we could work in the CPU/memory limit stuff, that would cover most of my immediate 'beefs' ... - ---- Marc G. Fournier Hub.Org Networking Services (http://www.hub.org) Email . scrappy@hub.org MSN . scrappy@hub.org Yahoo . yscrappy Skype: hub.org ICQ . 7615664 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) iD8DBQFGUkAE4QvfyHIvDvMRAjgSAKCN7TJas9OhjgaR3lpHZ2aCY3tFcACdFVEW BxLvHXIHd8wpR3BBGf1hnLI= =W0vx -----END PGP SIGNATURE----- From owner-freebsd-jail@FreeBSD.ORG Tue May 22 02:56:43 2007 Return-Path: X-Original-To: freebsd-jail@freebsd.org Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 7708716A400 for ; Tue, 22 May 2007 02:56:43 +0000 (UTC) (envelope-from amistry@am-productions.biz) Received: from mail.united-ware.com (am-productions.biz [69.61.164.22]) by mx1.freebsd.org (Postfix) with ESMTP id 2928013C4BB for ; Tue, 22 May 2007 02:56:42 +0000 (UTC) (envelope-from amistry@am-productions.biz) Received: from [192.168.1.100] (cpe-71-72-80-132.columbus.res.rr.com [71.72.80.132]) (authenticated bits=0) by mail.united-ware.com (8.13.8/8.13.8) with ESMTP id l4M3PPvh084369 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 21 May 2007 23:25:33 -0400 (EDT) (envelope-from amistry@am-productions.biz) From: Anish Mistry Organization: AM Productions To: "Marc G. Fournier" Date: Mon, 21 May 2007 22:58:55 -0400 User-Agent: KMail/1.9.6 References: <424BA04B19D3AACE29F0B591@ganymede.hub.org> In-Reply-To: <424BA04B19D3AACE29F0B591@ganymede.hub.org> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart26870452.xIsDJcxrnc"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200705212259.17528.amistry@am-productions.biz> X-Spam-Status: No, score=0.3 required=5.0 tests=BAYES_50,MYFREEBSD3, RCVD_IN_NJABL_DUL,SPF_SOFTFAIL autolearn=no version=3.1.3 X-Spam-Checker-Version: SpamAssassin 3.1.3 (2006-06-01) on mail.united-ware.com X-Virus-Scanned: ClamAV 0.88.7/3278/Mon May 21 19:04:26 2007 on mail.united-ware.com X-Virus-Status: Clean Cc: Alex Lyashkov , freebsd-jail@freebsd.org Subject: Re: FreeVPS / Jail2 (Was: Re: Welcome to freebsd-jail ...) X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 22 May 2007 02:56:43 -0000 --nextPart26870452.xIsDJcxrnc Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Monday 21 May 2007, Marc G. Fournier wrote: > --On Monday, May 21, 2007 13:42:53 +0300 Alex Lyashkov > > > wrote: > > After Sept 2006, project moved into p4 for development as jail2 > > (//depot/projects/jail2/), but you a right development speed is > > down because I change an employer. > > Currently this stay in finish virtualization private module data > > and implement jail init stuff similar SYSINIT/SYSUNIT macros. > > First question ... what is 'p4'? Perforce. =2D-=20 Anish Mistry amistry@am-productions.biz AM Productions http://am-productions.biz/ --nextPart26870452.xIsDJcxrnc Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.3 (FreeBSD) iD8DBQBGUlyFxqA5ziudZT0RAjheAKC6ddBawJZHOstwzYVPHyie2zkbiACfYNnv QV2jI8LAiUAfCKdaTuN/G9w= =iRJ1 -----END PGP SIGNATURE----- --nextPart26870452.xIsDJcxrnc-- From owner-freebsd-jail@FreeBSD.ORG Tue May 22 04:28:00 2007 Return-Path: X-Original-To: freebsd-jail@freebsd.org Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id A317E16A421 for ; Tue, 22 May 2007 04:28:00 +0000 (UTC) (envelope-from freebsd@hub.org) Received: from hub.org (hub.org [200.46.204.220]) by mx1.freebsd.org (Postfix) with ESMTP id 677BF13C465 for ; Tue, 22 May 2007 04:28:00 +0000 (UTC) (envelope-from freebsd@hub.org) Received: from localhost (unknown [200.46.204.191]) by hub.org (Postfix) with ESMTP id 88CF8118AC04; Tue, 22 May 2007 01:27:58 -0300 (ADT) Received: from hub.org ([200.46.204.220]) by localhost (mx1.hub.org [200.46.204.191]) (amavisd-maia, port 10024) with ESMTP id 01153-02; Tue, 22 May 2007 01:27:58 -0300 (ADT) Received: from ganymede.hub.org (blk-89-241-126.eastlink.ca [24.89.241.126]) by hub.org (Postfix) with ESMTP id A132A118AC03; Tue, 22 May 2007 01:27:57 -0300 (ADT) Received: from localhost (localhost [127.0.0.1]) by ganymede.hub.org (Postfix) with ESMTP id C52D439ACC; Tue, 22 May 2007 01:27:56 -0300 (ADT) Date: Tue, 22 May 2007 01:27:56 -0300 From: "Marc G. Fournier" To: Anish Mistry Message-ID: <802765CD947E1411A2E693EF@ganymede.hub.org> In-Reply-To: <200705212259.17528.amistry@am-productions.biz> References: <424BA04B19D3AACE29F0B591@ganymede.hub.org> <200705212259.17528.amistry@am-productions.biz> X-Mailer: Mulberry/4.0.8 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Content-Disposition: inline Cc: Alex Lyashkov , freebsd-jail@freebsd.org Subject: Re: FreeVPS / Jail2 (Was: Re: Welcome to freebsd-jail ...) X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 22 May 2007 04:28:00 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --On Monday, May 21, 2007 22:58:55 -0400 Anish Mistry wrote: > On Monday 21 May 2007, Marc G. Fournier wrote: >> --On Monday, May 21, 2007 13:42:53 +0300 Alex Lyashkov >> >> >> wrote: >> > After Sept 2006, project moved into p4 for development as jail2 >> > (//depot/projects/jail2/), but you a right development speed is >> > down because I change an employer. >> > Currently this stay in finish virtualization private module data >> > and implement jail init stuff similar SYSINIT/SYSUNIT macros. >> >> First question ... what is 'p4'? > Perforce. Which means, what, exactly? the code is now on freebsd, just waiting for integration? I'm not familiar with Perforce, although I've heard of both it and p4 referenced before .... - ---- Marc G. Fournier Hub.Org Networking Services (http://www.hub.org) Email . scrappy@hub.org MSN . scrappy@hub.org Yahoo . yscrappy Skype: hub.org ICQ . 7615664 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) iD8DBQFGUnFM4QvfyHIvDvMRAvRBAJ9uXHrzakWgpf8nNWzco4oXprVjfwCgzhPr YUSNaszF8Zya86oL6VkQD3Y= =jT68 -----END PGP SIGNATURE----- From owner-freebsd-jail@FreeBSD.ORG Tue May 22 04:48:08 2007 Return-Path: X-Original-To: freebsd-jail@freebsd.org Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id ED83A16A400 for ; Tue, 22 May 2007 04:48:08 +0000 (UTC) (envelope-from amistry@am-productions.biz) Received: from mail.united-ware.com (am-productions.biz [69.61.164.22]) by mx1.freebsd.org (Postfix) with ESMTP id 84F9A13C468 for ; Tue, 22 May 2007 04:48:08 +0000 (UTC) (envelope-from amistry@am-productions.biz) Received: from [192.168.1.100] (cpe-71-72-80-132.columbus.res.rr.com [71.72.80.132]) (authenticated bits=0) by mail.united-ware.com (8.13.8/8.13.8) with ESMTP id l4M5Gupu085425 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 22 May 2007 01:17:03 -0400 (EDT) (envelope-from amistry@am-productions.biz) From: Anish Mistry Organization: AM Productions To: "Marc G. Fournier" Date: Tue, 22 May 2007 00:50:48 -0400 User-Agent: KMail/1.9.6 References: <424BA04B19D3AACE29F0B591@ganymede.hub.org> <200705212259.17528.amistry@am-productions.biz> <802765CD947E1411A2E693EF@ganymede.hub.org> In-Reply-To: <802765CD947E1411A2E693EF@ganymede.hub.org> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1324002.FH0f7KAihN"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200705220050.49667.amistry@am-productions.biz> X-Spam-Status: No, score=0.3 required=5.0 tests=BAYES_50,MYFREEBSD3, RCVD_IN_NJABL_DUL,SPF_SOFTFAIL autolearn=no version=3.1.3 X-Spam-Checker-Version: SpamAssassin 3.1.3 (2006-06-01) on mail.united-ware.com X-Virus-Scanned: ClamAV 0.88.7/3278/Mon May 21 19:04:26 2007 on mail.united-ware.com X-Virus-Status: Clean Cc: Alex Lyashkov , freebsd-jail@freebsd.org Subject: Re: FreeVPS / Jail2 (Was: Re: Welcome to freebsd-jail ...) X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 22 May 2007 04:48:09 -0000 --nextPart1324002.FH0f7KAihN Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Tuesday 22 May 2007, Marc G. Fournier wrote: > --On Monday, May 21, 2007 22:58:55 -0400 Anish Mistry > > wrote: > > On Monday 21 May 2007, Marc G. Fournier wrote: > >> --On Monday, May 21, 2007 13:42:53 +0300 Alex Lyashkov > >> > >> > >> wrote: > >> > After Sept 2006, project moved into p4 for development as > >> > jail2 (//depot/projects/jail2/), but you a right development > >> > speed is down because I change an employer. > >> > Currently this stay in finish virtualization private module > >> > data and implement jail init stuff similar SYSINIT/SYSUNIT > >> > macros. > >> > >> First question ... what is 'p4'? > > > > Perforce. > > Which means, what, exactly? the code is now on freebsd, just > waiting for integration? I'm not familiar with Perforce, although > I've heard of both it and p4 referenced before .... It's in a development branch in the FreeBSD Perforce repository. It=20 has not been committed to HEAD. =2D-=20 Anish Mistry amistry@am-productions.biz AM Productions http://am-productions.biz/ --nextPart1324002.FH0f7KAihN Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.3 (FreeBSD) iD8DBQBGUnapxqA5ziudZT0RAlBpAKCzeXpXQ2zR56gx/OOgLmAiBMQ4SACcCyMq 2Mib6+T0HZF9j6M2WjL42eo= =J0bO -----END PGP SIGNATURE----- --nextPart1324002.FH0f7KAihN-- From owner-freebsd-jail@FreeBSD.ORG Wed May 23 14:49:44 2007 Return-Path: X-Original-To: freebsd-jail@freebsd.org Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 499F116A421 for ; Wed, 23 May 2007 14:49:44 +0000 (UTC) (envelope-from Albert.Shih@obspm.fr) Received: from mesiob.obspm.fr (mesiob.obspm.fr [145.238.2.2]) by mx1.freebsd.org (Postfix) with ESMTP id B008B13C45B for ; Wed, 23 May 2007 14:49:43 +0000 (UTC) (envelope-from Albert.Shih@obspm.fr) Received: from localhost (pcjas.obspm.fr [145.238.2.126]) by mesiob.obspm.fr (8.13.4/8.13.4/SIO Observatoire de Paris) with ESMTP id l4NEdWoV019803 for ; Wed, 23 May 2007 16:39:32 +0200 Date: Wed, 23 May 2007 16:39:32 +0200 From: Albert Shih To: freebsd-jail@freebsd.org Message-ID: <20070523143932.GG45170@pcjas.obspm.fr> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit User-Agent: Mutt/1.5.14 (2007-02-12) X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-2.0.2 (mesiob.obspm.fr [145.238.2.2]); Wed, 23 May 2007 16:39:32 +0200 (CEST) X-Virus-Scanned: ClamAV version 0.90.2, clamav-milter version 0.90.2 on mesiob.obspm.fr X-Virus-Status: Clean Subject: Java in jail X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Albert.Shih@obspm.fr List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 May 2007 14:49:44 -0000 Hi all I'm very glad this mailing-list exist, because I think (event you don't care ;-) ) jail is a fantastic system. Well my question : Is there any restriction to bring in a jail a «full» tomcat/java système ? if I use jdk15 (natif) ? if I use linux-sun-jdk (linux-emulation) to run the tomcat. regards. -- Albert SHIH Observatoire de Paris Meudon SIO batiment 15 Heure local/Local time: Mer 23 mai 2007 16:37:39 CEST From owner-freebsd-jail@FreeBSD.ORG Wed May 23 18:19:46 2007 Return-Path: X-Original-To: freebsd-jail@freebsd.org Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id AA22516A400 for ; Wed, 23 May 2007 18:19:46 +0000 (UTC) (envelope-from freebsd@hub.org) Received: from hub.org (hub.org [200.46.204.220]) by mx1.freebsd.org (Postfix) with ESMTP id 7380C13C4AD for ; Wed, 23 May 2007 18:19:46 +0000 (UTC) (envelope-from freebsd@hub.org) Received: from localhost (unknown [200.46.204.187]) by hub.org (Postfix) with ESMTP id 3C212118AC3E; Wed, 23 May 2007 15:19:44 -0300 (ADT) Received: from hub.org ([200.46.204.220]) by localhost (mx1.hub.org [200.46.204.187]) (amavisd-maia, port 10024) with ESMTP id 78047-04; Wed, 23 May 2007 15:19:43 -0300 (ADT) Received: from ganymede.hub.org (blk-89-241-126.eastlink.ca [24.89.241.126]) by hub.org (Postfix) with ESMTP id AC954118AC3C; Wed, 23 May 2007 15:19:43 -0300 (ADT) Received: from localhost (localhost [127.0.0.1]) by ganymede.hub.org (Postfix) with ESMTP id 498703B649; Wed, 23 May 2007 15:19:46 -0300 (ADT) Date: Wed, 23 May 2007 15:19:46 -0300 From: "Marc G. Fournier" To: Albert.Shih@obspm.fr, freebsd-jail@freebsd.org Message-ID: <6AB14279D09B0FBBD59AE607@ganymede.hub.org> In-Reply-To: <20070523143932.GG45170@pcjas.obspm.fr> References: <20070523143932.GG45170@pcjas.obspm.fr> X-Mailer: Mulberry/4.0.8 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Cc: Subject: Re: Java in jail X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 May 2007 18:19:46 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --On Wednesday, May 23, 2007 16:39:32 +0200 Albert Shih = =20 wrote: > Hi all > > I'm very glad this mailing-list exist, because I think (event you don't > care ;-) ) jail is a fantastic system. > > Well my question : > > Is there any restriction to bring in a jail a =C2=ABfull=C2=BB tomcat/java > syst=C3=A8me ? if I use jdk15 (natif) ? if I use linux-sun-jdk = (linux-emulation) > to run the tomcat. I haven't had any problems using either native or linux ... and I have some=20 servers that are running several instances of tomcat in parallel ... - ---- Marc G. Fournier Hub.Org Networking Services (http://www.hub.org) Email . scrappy@hub.org MSN . scrappy@hub.org Yahoo . yscrappy Skype: hub.org ICQ . 7615664 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) iD8DBQFGVIXC4QvfyHIvDvMRAot3AJkBDN68V1kUiP9rcYxz8geFrH5gUgCcCAzt 81tTMapJpu0bpZNamvFRiYc=3D =3DVF0n -----END PGP SIGNATURE----- From owner-freebsd-jail@FreeBSD.ORG Thu May 24 19:25:17 2007 Return-Path: X-Original-To: freebsd-jail@freebsd.org Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 1F0F616A469 for ; Thu, 24 May 2007 19:25:17 +0000 (UTC) (envelope-from ohauer@gmx.de) Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by mx1.freebsd.org (Postfix) with SMTP id 6F84313C469 for ; Thu, 24 May 2007 19:25:16 +0000 (UTC) (envelope-from ohauer@gmx.de) Received: (qmail invoked by alias); 24 May 2007 18:58:35 -0000 Received: from u18-124.dsl.vianetworks.de (EHLO [172.20.1.50]) [194.231.39.124] by mail.gmx.net (mp058) with SMTP; 24 May 2007 20:58:35 +0200 X-Authenticated: #1956535 X-Provags-ID: V01U2FsdGVkX1/thuZkNpztft6HMdrIyRf9zTpSIYKlzieq09s5Iv O+WyyP0knmz9Zv From: Olli Hauer To: freebsd-jail@freebsd.org Content-Type: text/plain Date: Thu, 24 May 2007 20:58:32 +0200 Message-Id: <1180033112.7242.18.camel@amd.uni.vrs> Mime-Version: 1.0 X-Mailer: Evolution 2.8.1.1 FreeBSD GNOME Team Port Content-Transfer-Encoding: 7bit X-Y-GMX-Trusted: 0 Subject: default setting in /etc/default/rc.conf X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 May 2007 19:25:17 -0000 This is one of the first patches i apply to all new systems, because i dislike jail_set_hostname_allow in /etc/rc.conf.local # diff /etc/defaults/rc.conf.orig /etc/defaults/rc.conf 567c567 < jail_set_hostname_allow="YES" # Allow root user in a jail to change its hostname --- > jail_set_hostname_allow="NO" # Allow root user in a jail to change its hostname I manage system settings in /etc/sysctl.conf to keep the rc.conf.local scripts clean (only settings that cannot set in sysctl.conf). Unfortunately the /etc/rc.d/jail script does not honor this settings. If you look around the tutorials on the net you will never see one that does not disable this feature. olli From owner-freebsd-jail@FreeBSD.ORG Thu May 24 21:45:30 2007 Return-Path: X-Original-To: freebsd-jail@freebsd.org Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 7805816A421 for ; Thu, 24 May 2007 21:45:30 +0000 (UTC) (envelope-from Albert.Shih@obspm.fr) Received: from mesiob.obspm.fr (mesiob.obspm.fr [145.238.2.2]) by mx1.freebsd.org (Postfix) with ESMTP id 1578D13C44B for ; Thu, 24 May 2007 21:45:29 +0000 (UTC) (envelope-from Albert.Shih@obspm.fr) Received: from localhost (pcjas.obspm.fr [145.238.2.126]) by mesiob.obspm.fr (8.13.4/8.13.4/SIO Observatoire de Paris) with ESMTP id l4OLjSU8029333; Thu, 24 May 2007 23:45:28 +0200 Date: Thu, 24 May 2007 23:45:28 +0200 From: Albert Shih To: Olli Hauer Message-ID: <20070524214528.GA77983@pcjas.obspm.fr> References: <1180033112.7242.18.camel@amd.uni.vrs> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <1180033112.7242.18.camel@amd.uni.vrs> User-Agent: Mutt/1.5.14 (2007-02-12) X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-2.0.2 (mesiob.obspm.fr [145.238.2.2]); Thu, 24 May 2007 23:45:28 +0200 (CEST) X-Virus-Scanned: ClamAV version 0.90.2, clamav-milter version 0.90.2 on mesiob.obspm.fr X-Virus-Status: Clean Cc: freebsd-jail@freebsd.org Subject: Re: default setting in /etc/default/rc.conf X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Albert.Shih@obspm.fr List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 May 2007 21:45:30 -0000 Le 24/05/2007 20:58:32+0200, Olli Hauer a écrit > This is one of the first patches i apply to all new systems, > because i dislike jail_set_hostname_allow in /etc/rc.conf.local > > > # diff /etc/defaults/rc.conf.orig /etc/defaults/rc.conf > 567c567 > < jail_set_hostname_allow="YES" # Allow root user in a jail to change > its hostname > --- > > jail_set_hostname_allow="NO" # Allow root user in a jail to change its > hostname Why you put that in the /etc/defaults/rc.conf ? Why you don't put this in the standard /etc/rc.conf where there're all config for your host. If you put in /etc/defaults/rc.conf when you make a mergemaster after a builworld/installworld you need to put again your «patch». Regards. -- Albert SHIH Observatoire de Paris Meudon SIO batiment 15 Heure local/Local time: Thu May 24 23:43:37 CEST 2007 From owner-freebsd-jail@FreeBSD.ORG Fri May 25 08:20:57 2007 Return-Path: X-Original-To: freebsd-jail@freebsd.org Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 2CFC316A421 for ; Fri, 25 May 2007 08:20:57 +0000 (UTC) (envelope-from ohauer@gmx.de) Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by mx1.freebsd.org (Postfix) with SMTP id 7C73013C46C for ; Fri, 25 May 2007 08:20:56 +0000 (UTC) (envelope-from ohauer@gmx.de) Received: (qmail invoked by alias); 25 May 2007 08:20:55 -0000 Received: from u18-124.dsl.vianetworks.de (EHLO [172.20.1.50]) [194.231.39.124] by mail.gmx.net (mp052) with SMTP; 25 May 2007 10:20:55 +0200 X-Authenticated: #1956535 X-Provags-ID: V01U2FsdGVkX19nmypTsmBn2+LLKlIrUtZqj0vNcpbCw9MNeMLmtU VV69SbW7vhF+XO From: Olli Hauer To: Albert.Shih@obspm.fr In-Reply-To: <20070524214528.GA77983@pcjas.obspm.fr> References: <1180033112.7242.18.camel@amd.uni.vrs> <20070524214528.GA77983@pcjas.obspm.fr> Content-Type: text/plain; charset=ISO-8859-1 Date: Fri, 25 May 2007 10:20:50 +0200 Message-Id: <1180081250.1000.23.camel@amd.uni.vrs> Mime-Version: 1.0 X-Mailer: Evolution 2.8.1.1 FreeBSD GNOME Team Port Content-Transfer-Encoding: 8bit X-Y-GMX-Trusted: 0 Cc: freebsd-jail@freebsd.org Subject: Re: default setting in /etc/default/rc.conf X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 May 2007 08:20:57 -0000 On Thu, 2007-05-24 at 23:45 +0200, Albert Shih wrote: > Le 24/05/2007 20:58:32+0200, Olli Hauer a écrit > > This is one of the first patches i apply to all new systems, > > because i dislike jail_set_hostname_allow in /etc/rc.conf.local > > > > > > # diff /etc/defaults/rc.conf.orig /etc/defaults/rc.conf > > 567c567 > > < jail_set_hostname_allow="YES" # Allow root user in a jail to change > > its hostname > > --- > > > jail_set_hostname_allow="NO" # Allow root user in a jail to change its > > hostname > > Why you put that in the /etc/defaults/rc.conf ? Why you don't put this in > the standard > > /etc/rc.conf > > where there're all config for your host. > > If you put in /etc/defaults/rc.conf when you make a > > mergemaster > > after a builworld/installworld you need to put again your «patch». > > Regards. > In my case i have a build system for about 20+ hosts for deploy, OS rebuilding, kernels, patches, ports ... I also have other patches that are applied to the source, for example modified periodic scripts ... (take a look how many good patches sleep years as PR). The real question about this patch is. Why should i allow a user to change the Jail hostname for default? Try to kill a process in a jail from the base system after the hostname is changed from inside the jail. -- olli