schrieb Harald Schmalzbauer am 14.02.2013 14:18 (localtime): > schrieb Fbsd8 am 06.02.2013 17:57 (localtime): >> Fleuriot Damien wrote: >>> Running 8.3 here and the answer is no. >>> >>> >>> On Feb 6, 2013, at 5:39 PM, Fbsd8 <fb...@a1poweruser.com> wrote: >>> >>>> Is there a way to set these MIBs >>>> on a per jail bases? >>>> >>>> allow.mount.nullfs >>>> allow.raw_sockets >>>> cpuset.id >>>> securelevel >>> >>> >> Rereading the "man jail" for 9.1 talks about securelevel as a jail >> parammeter. So correct me if I an wrong. All the security.jail.param.* >> MIBs are set in rc.conf or /etc/jail.conf file on a per jail bases by >> changing the word "parm" to the jailname? >> > This applies to jail.conf(5). > That's a entirely new way to handle jails in FreeBSD 9.1. Very nice, but > not included in rc.d. > > If you want to keep the traditional way running jails, I made a patch > some time ago to control more per-jail tunables. > Here you can donwload it for -9: > ftp://ftp.omnilan.de/pub/FreeBSD/OmniLAN/deploy-tools/local-patches/src/jail-allow-selectables.patch_9 > That also irons some ip configuration cosmetics, see defaults/rc.conf.
See also http://docs.freebsd.org/cgi/getmsg.cgi?fetch=686783+0+archive/2010/freebsd-stable/20100704.freebsd-stable -Harry
signature.asc
Description: OpenPGP digital signature
