From owner-cvs-src@FreeBSD.ORG  Sun Feb 15 08:39:07 2004
Return-Path: <owner-cvs-src@FreeBSD.ORG>
Delivered-To: cvs-src@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 34C1916A4CE; Sun, 15 Feb 2004 08:39:07 -0800 (PST)
Received: from milla.ask33.net (milla.ask33.net [217.197.166.60])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 012CB43D1F; Sun, 15 Feb 2004 08:39:05 -0800 (PST)
	(envelope-from nick@milla.ask33.net)
Received: by milla.ask33.net (Postfix, from userid 1001)
	id 5EE783ABB80; Sun, 15 Feb 2004 17:42:09 +0100 (CET)
Date: Sun, 15 Feb 2004 17:42:09 +0100
From: Pawel Jakub Dawidek <pjd@FreeBSD.org>
To: Julian Elischer <julian@elischer.org>
Message-ID: <20040215164209.GB14639@garage.freebsd.pl>
References: <Pine.NEB.3.96L.1040215112750.56481A-100000@fledge.watson.org>
	<Pine.BSF.4.21.0402150831330.38635-100000@InterJet.elischer.org>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="NknGfcVoKMD30k4E"
Content-Disposition: inline
In-Reply-To: <Pine.BSF.4.21.0402150831330.38635-100000@InterJet.elischer.org>
X-PGP-Key-URL: http://people.freebsd.org/~pjd/pjd.asc
X-OS: FreeBSD 4.8-RELEASE-p13 i386
X-URL: http://garage.freebsd.pl
User-Agent: Mutt/1.5.1i
cc: cvs-src@FreeBSD.org
cc: src-committers@FreeBSD.org
cc: Robert Watson <rwatson@FreeBSD.org>
cc: cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/sys/kern kern_jail.c
X-BeenThere: cvs-src@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: CVS commit messages for the src tree <cvs-src.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-src>
List-Post: <mailto:cvs-src@freebsd.org>
List-Help: <mailto:cvs-src-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 15 Feb 2004 16:39:07 -0000


--NknGfcVoKMD30k4E
Content-Type: text/plain; charset=iso-8859-2
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Sun, Feb 15, 2004 at 08:34:21AM -0800, Julian Elischer wrote:
+> > How about we wait three weeks and see if anyone complains on
+> > freebsd-current about the loss of functionality -- if no one says
+> > anything, we remove the sysctl?
+>=20
+> In scripts I use the fact that "df /" in a jail returns the size of=20
+> some other filesystem to see if I'm in a jail.
+> I've asked before for a simple sysctl to let me know if I'm in a jail
+> but the response was generally -ve..
+> you sometimes need to be able to know you are in a jail so that you can
+> know not to attempt things that are not permitted in jails..
+> (e.g. pings, or ifconfig'ing network interfaces)

security.jail.jailed?

Yes, it is important sometimes. With such sysctl we will be able to teach
our start scripts to respect it.

--=20
Pawel Jakub Dawidek                       http://www.FreeBSD.org
pjd@FreeBSD.org                           http://garage.freebsd.pl
FreeBSD committer                         Am I Evil? Yes, I Am!

--NknGfcVoKMD30k4E
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (FreeBSD)

iD8DBQFAL6FhForvXbEpPzQRAhM8AJ40hexLLuJamVbR6m8l5Ku5j4x4UQCghZTQ
l39SpNDlGztqpix2zQysNqw=
=UChD
-----END PGP SIGNATURE-----

--NknGfcVoKMD30k4E--