From owner-freebsd-questions@FreeBSD.ORG  Thu Nov 17 14:36:51 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 778AE16A41F
	for <freebsd-questions@freebsd.org>;
	Thu, 17 Nov 2005 14:36:51 +0000 (GMT)
	(envelope-from mark@gaiahost.coop)
Received: from biodiesel.gaiahost.coop (biodiesel.gaiahost.coop [64.95.78.120])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 2884943D45
	for <freebsd-questions@freebsd.org>;
	Thu, 17 Nov 2005 14:36:50 +0000 (GMT)
	(envelope-from mark@gaiahost.coop)
Received: from localhost (host-64-65-195-19.spr.choiceone.net
	[::ffff:64.65.195.19]) (AUTH: LOGIN mark@hubcapconsulting.com)
	by biodiesel.gaiahost.coop with esmtp; Thu, 17 Nov 2005 09:36:43 -0500
	id 00358079.437C957E.00003550
Received: by localhost (sSMTP sendmail emulation);
	Thu, 17 Nov 2005 09:36:43 -0500
Date: Thu, 17 Nov 2005 09:36:43 -0500
From: Mark Bucciarelli <mark@gaiahost.coop>
To: Free BSD Questions list <freebsd-questions@freebsd.org>
Message-ID: <20051117143643.GC2572@rabbit>
Mail-Followup-To: Free BSD Questions list <freebsd-questions@freebsd.org>
References: <51190.68.165.89.71.1132194943.squirrel@mail.el.net>
	<20051117025112.3707143D45@mx1.FreeBSD.org>
	<20051117043859.GF26954@localdomain>
	<D4EE1810-A918-491C-9860-CF12945337A7@shire.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
In-Reply-To: <D4EE1810-A918-491C-9860-CF12945337A7@shire.net>
User-Agent: Mutt/1.4.2.1i
Subject: nullfs [was: Need urgent help regarding security]
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Nov 2005 14:36:51 -0000

On Wed, Nov 16, 2005 at 10:16:16PM -0700, Chad Leigh -- Shire.Net LLC
wrote:

> I then create one or more jails that use nullfs to READ ONLY mount
> specific parts of the master hierarchy into the jail.

This is very interesting to me, as I are currently working on a jail
design and nullfs has a number of question marks next to it, mainly due
to the scary man page warning. Here are a few of the questions:

How did you decide it was trustworthy?

Does it result in lower RAM usage? (The program that is run, for
example, Apache, comes from the same spot on the disk across all jails.)

Is it currently maintained? The man page includes a maintainer
solicitation.

Have you had any problems in production?

Have you used it for long?

m