Quoting Doug Ambrisko (from Wed, 25 May 2011
09:42:20 -0700 (PDT)):
CCing jails@
Alexander Leidinger writes:
| Quoting Doug Ambrisko (from Thu, 19 May 2011
| 14:38:40 -0700 (PDT)):
|
| > Alexander Leidinger writes:
| > | On Thu, 19 May 2011 10:24:59 -0700 (PDT) Doug Ambrisko
| > | wrote:
|
Alexander Leidinger writes:
| Quoting Doug Ambrisko (from Thu, 19 May 2011
| 14:38:40 -0700 (PDT)):
|
| > Alexander Leidinger writes:
| > | On Thu, 19 May 2011 10:24:59 -0700 (PDT) Doug Ambrisko
| > | wrote:
| > |
| > | > doesn't have access to it anymore either. Running an X server in a
| >
Quoting Doug Ambrisko (from Thu, 19 May 2011
14:38:40 -0700 (PDT)):
Alexander Leidinger writes:
| On Thu, 19 May 2011 10:24:59 -0700 (PDT) Doug Ambrisko
| wrote:
|
| > doesn't have access to it anymore either. Running an X server in a
| > vimage has some issues. Most are pretty easy to ove
On Thu, 19 May 2011 10:24:59 -0700 (PDT) Doug Ambrisko
wrote:
> doesn't have access to it anymore either. Running an X server in a
> vimage has some issues. Most are pretty easy to over-come.
Are you using my patch
(http://www.leidinger.net/FreeBSD/current-patches/0_jail.diff) + a
custom devfs
Alexander Leidinger writes:
| On Thu, 19 May 2011 10:24:59 -0700 (PDT) Doug Ambrisko
| wrote:
|
| > doesn't have access to it anymore either. Running an X server in a
| > vimage has some issues. Most are pretty easy to over-come.
|
| Are you using my patch
| (http://www.leidinger.net/FreeBSD/c
Arnaud Lacombe writes:
| Hi,
|
| On Wed, May 18, 2011 at 10:03 AM, Pawel Jakub Dawidek
wrote:
| > On Tue, May 17, 2011 at 10:17:12PM +0200, Alexander Leidinger wrote:
| >> On Tue, 17 May 2011 12:56:40 -0700 Sean Bruno
| >> wrote:
| >>
| >> > Silly thing I ran into today. ?User wanted to NFS mou
Quoting Arnaud Lacombe (from Wed, 18 May 2011
22:37:24 -0400):
Hi,
On Wed, May 18, 2011 at 10:03 AM, Pawel Jakub Dawidek
wrote:
There are some file systems types that can't be securely mounted within
a jail no matter what, like UFS, MSDOFS, EXTFS, XFS, REISERFS, NTFS,
etc. because the
Hi,
On Wed, May 18, 2011 at 10:03 AM, Pawel Jakub Dawidek wrote:
> On Tue, May 17, 2011 at 10:17:12PM +0200, Alexander Leidinger wrote:
>> On Tue, 17 May 2011 12:56:40 -0700 Sean Bruno
>> wrote:
>>
>> > Silly thing I ran into today. User wanted to NFS mount a dir inside a
>> > jail. After I gr
On Wed, May 18, 2011 at 04:03:26PM +0200, Pawel Jakub Dawidek wrote:
> On Tue, May 17, 2011 at 10:17:12PM +0200, Alexander Leidinger wrote:
> > On Tue, 17 May 2011 12:56:40 -0700 Sean Bruno
> > wrote:
> >
> > > Silly thing I ran into today. User wanted to NFS mount a dir inside a
> > > jail. Af
On Tue, May 17, 2011 at 10:17:12PM +0200, Alexander Leidinger wrote:
> On Tue, 17 May 2011 12:56:40 -0700 Sean Bruno
> wrote:
>
> > Silly thing I ran into today. User wanted to NFS mount a dir inside a
> > jail. After I groaned about the security implication of this, I noted
> > that there is a
On 5/17/11 1:17 PM, Alexander Leidinger wrote:
On Tue, 17 May 2011 12:56:40 -0700 Sean Bruno
wrote:
Silly thing I ran into today. User wanted to NFS mount a dir inside a
jail. After I groaned about the security implication of this, I noted
that there is a sysctl that looks like it should allo
On Tue, 17 May 2011 12:56:40 -0700 Sean Bruno
wrote:
> Silly thing I ran into today. User wanted to NFS mount a dir inside a
> jail. After I groaned about the security implication of this, I noted
> that there is a sysctl that looks like it should allow this. Namely,
> security.jail.mount_allo
Silly thing I ran into today. User wanted to NFS mount a dir inside a
jail. After I groaned about the security implication of this, I noted
that there is a sysctl that looks like it should allow this. Namely,
security.jail.mount_allowed. I noted that setting this follows a path
that *should* ha
13 matches
Mail list logo
