Date: Wed, 16 Oct 2019 15:28:53 -0400 From: "James B. Byrne" <byrnejb@harte-lyne.ca> To: freebsd-questions@freebsd.org Subject: FUSE file systems in freebsd 12 jails Message-ID: <343e46dba748fae77d8ba10518528073.squirrel@webmail.harte-lyne.ca> References: In-Reply-To:
next in thread | raw e-mail | index | archive | help
I was finally able to mount a fuse file system as root inside a jail
running on FreeBSd12.0.
My /etc/sysctl.conf on the host system contained:
security.jail.enforce_statfs=1
My 9ez)jail configuration contained:
. . .
param3="enforce_statfs=1 allow.mount=1 allow.mount.devfs=1"
param4="allow.mount.nullfs=1 allow.mount.fdescfs=1"
param5="allow.mount.fusefs=1 devfs_ruleset=4"
export jail_hll_theheart_parameters="$param1 $param2 $param3 $param4
$param5"
However, inside the jail when I display the sysctl variables related
to this I see a lot of deprecated warnings:
security.jail.mount_allowed: Processes in jail can mount/unmount
jail-friendly file systems (deprecated)
security.jail.mount_devfs_allowed: Jail may mount the devfs file
system (deprecated)
security.jail.mount_fdescfs_allowed: Jail may mount the fdescfs file
system (deprecated)
and so on.
Are these related to the change to jail.conf in 9.1 and can therefore
be ignored?
--
*** e-Mail is NOT a SECURE channel ***
Do NOT transmit sensitive data via e-Mail
Do NOT open attachments nor follow links sent by e-Mail
James B. Byrne mailto:ByrneJB@Harte-Lyne.ca
Harte & Lyne Limited http://www.harte-lyne.ca
9 Brockley Drive vox: +1 905 561 1241
Hamilton, Ontario fax: +1 905 561 0757
Canada L8E 3C3
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?343e46dba748fae77d8ba10518528073.squirrel>