Date: Fri, 09 Feb 2001 05:20:15 -0800 From: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca> To: Kris Kennaway <kris@obsecurity.org> Cc: Attila Nagy <bra@fsn.hu>, freebsd-stable@FreeBSD.ORG, freebsd-hackers@FreeBSD.ORG Subject: Re: mount_null and jail Message-ID: <200102091321.f19DL3B84023@cwsys.cwsent.com> In-Reply-To: Your message of "Thu, 08 Feb 2001 13:52:51 PST." <20010208135251.A48378@mollari.cthul.hu>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <20010208135251.A48378@mollari.cthul.hu>, Kris Kennaway writes: > On Thu, Feb 08, 2001 at 08:15:42PM +0100, Attila Nagy wrote: > > > When I start jail I often get page faults. > > Also I want to chroot() in the jail (ftp daemon) but it page faults in all > > cases. > > nullfs is broken in all versions prior to 5.0-CURRENT. This is even > documented in the manpage. I don't know if there are any plans to > backport the fixes, I understand they were fairly extensive. Mount_union does work much better than mount_null on -STABLE systems. I've set up jails where I've had a read-only filesystem union mounted under a read/write filesystem allowing me to use the same base O/S files, except for sensitive files and directories, keeping the changed bits in the filesystem above the "base". Regards, Phone: (250)387-8437 Cy Schubert Fax: (250)387-5766 Team Leader, Sun/Alpha Team Internet: Cy.Schubert@osg.gov.bc.ca Open Systems Group, ITSD, ISTA Province of BC To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200102091321.f19DL3B84023>