Date: Wed, 18 Jun 2008 21:56:37 +0200 From: Marko Zec <zec@icir.org> To: James Gritton <jamie@gritton.org> Cc: freebsd-virtualization@freebsd.org Subject: Re: V_* meta-symbols and locking Message-ID: <200806182156.37998.zec@icir.org> In-Reply-To: <4859661E.9070502@gritton.org> References: <48588595.7020709@gritton.org> <200806182140.23123.zec@icir.org> <4859661E.9070502@gritton.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wednesday 18 June 2008 21:46:38 James Gritton wrote: > Marko Zec wrote: > > The only thing I'd like to have > > as an option is to be able to spawn a new process in the target VM > > _without_ making it chrooted... > > If you mean creating a jail that's not chrooted, that's no problem. > If you mean creating a jail that *is* chrooted, and then placing a > process into that jail without chrooting it, that would be a breakage > of the jail paradigm. Hopefully you mean the former? No, I want the later, as an option. Given that the parent environment / jail completely controls the child anyhow, I don't think such an (optional) behavior would be too big a security issue. Marko
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200806182156.37998.zec>