From owner-freebsd-questions@FreeBSD.ORG Thu May 28 09:57:38 2015 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 80B28ABD for ; Thu, 28 May 2015 09:57:38 +0000 (UTC) (envelope-from r100500b@gmail.com) Received: from mail-wi0-x22d.google.com (mail-wi0-x22d.google.com [IPv6:2a00:1450:400c:c05::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 1AE1263E for ; Thu, 28 May 2015 09:57:38 +0000 (UTC) (envelope-from r100500b@gmail.com) Received: by wicmc15 with SMTP id mc15so118331577wic.1 for ; Thu, 28 May 2015 02:57:36 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:content-type; bh=u4GlMCrqlXrj8OqfH4lyq5j0hMz3FA/EdvAy/H3hW7A=; b=ms4DuWWFV/+iDiR5XzrwDwV/cYKyL8EI0DypR0VkGCKvG0ejsul3EtP28+J0qyjN2i YwGZaeD+OxY9muJwOzZtzBAeisPg0H96rtmBrW7FWyak1xtQg55EgcFS/WwbXHGkCMHG eCzGL4lVlikrsgWChJfpb++fxPW4t5BovF/8uGR7iaEd2EkLwvVIdAPSo97MSM0e+H2J dWFceELqbL1mfMczGW8zdaGZczh/XOBHjstU/C93TlliVAq8D3yRQKj/tsf2ODHzSwUd uL51aG7LGjmHusqphbc2Fczi9sEsov0DAv4v3Sixg9lxP2tgmTszH6OM0BdcQhwHEO0P mzFw== MIME-Version: 1.0 X-Received: by 10.194.110.67 with SMTP id hy3mr3794273wjb.87.1432807056654; Thu, 28 May 2015 02:57:36 -0700 (PDT) Received: by 10.180.88.167 with HTTP; Thu, 28 May 2015 02:57:36 -0700 (PDT) Date: Thu, 28 May 2015 12:57:36 +0300 Message-ID: Subject: FreeBSD php (cli) in host system with application jail From: =?UTF-8?B?0KDRg9GB0LvQsNC9INCR0YPRgNGF0LDQvdC+0LI=?= To: freebsd-questions Content-Type: text/plain; charset=UTF-8 X-Content-Filtered-By: Mailman/MimeDel 2.1.20 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 May 2015 09:57:38 -0000 Case: platform with FreeBSD (10.1) on the host system and multiple application jails. One of the important goals for multiple jail - multiple php versions. Users have access only in host system. Now I try to figure out next question, how to provide privileges none users php-cli on the host system? In most cases, it is used for users crontabs. I do not like the way to install one more php in host system. I think in this way, with some system aliases like: #!/usr/local/bin/bash C=" for i in "$@"; do C="$C \"${i//\"/\\\"}\"" done sudo jexec-U `whoami` 18 sh-c "$C" convert users command. But i do not sure in this issue. Have somebody faced with this question? What are the bottlenecks can be expected in the proposed solution?