[EMAIL PROTECTED] (Jim Wight) writes: > I am seeing odd behaviour with bind mounts. For example, if I specify > > mount --bind /tmp /vservers/tkt/opt > > in pre-start, and
Be very careful when doing such stuff (resp. make sure that the vserver is trusted). Else, an attacker within the vserver can cause execution of arbitrary commands in the host... (hint: think of a symlink /vservers/tkt/opt -> /bin) > umount /vservers/tkt/opt > > in post-stop (or postpost-stop), * these scripts are NOT executed within the vserver namespace so /vservers/tkt/opt is not mounted at this place * there is not much need for an explicit unmount; when the last process of the vserver/context dies, the namespace will not be referenced anymore and an implicit unmount happens Enrico
pgpXspse5qNCN.pgp
Description: PGP signature
_______________________________________________ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver