* Dmitry Chagin <dcha...@freebsd.org> [20230829 23:16]: > On Tue, Aug 29, 2023 at 03:02:58PM -0400, Shawn Webb wrote: > > Back in 2019, I had a similar issue: I needed access to be able to > > read/write to the system extended attribute namespace from within a > > jailed context. I wrote a rather simple patch that provides that > > support on a per-jail basis: > > > > https://git.hardenedbsd.org/hardenedbsd/HardenedBSD/-/commit/96c85982b45e44a6105664c7068a92d0a61da2a3 > > > > Hopefully that's useful to someone. > > > > Nice, thank you. I'd prefer to disable it by default, like on a host.
When it's disabled by default, it will require additional configuration to make "Linux jails" work again. -- Felix Palmen <zir...@freebsd.org> {private} fe...@palmen-it.de -- ports committer -- {web} http://palmen-it.de {pgp public key} http://palmen-it.de/pub.txt {pgp fingerprint} 6936 13D5 5BBF 4837 B212 3ACC 54AD E006 9879 F231
signature.asc
Description: PGP signature