Peter Schuller | 17 Sep 23:55 2007

Re: Running postgres 8.2 in a jail

>  try enable security.jail.sysvipc_allowed

But realize that this breaks the sandbox partially since
sysvipc/shared memory will be shared across all jails and the host.

--

-- 
/ Peter Schuller

PGP userID: 0xE9758B7D or 'Peter Schuller <peter.schuller@...>'
Key retrieval: Send an E-Mail to getpgpkey@...
E-Mail: peter.schuller@... Web: http://www.scode.org

Peter Schuller | 17 Sep 23:56 2007

Re: Hosted FreeBSD jail services?

> Greetings again. Do folks here know of any commercially hosted FreeBSD 
> virtual servers that use jails? I could not find any that used FreeBSD as 
> Xen domU images. Verio's $90/month is ridiculously expensive.

www.johncompanies.com (the guys also behind rsync.net).

--

-- 
/ Peter Schuller

PGP userID: 0xE9758B7D or 'Peter Schuller <peter.schuller@...>'
Key retrieval: Send an E-Mail to getpgpkey@...
E-Mail: peter.schuller@... Web: http://www.scode.org

Peter Schuller | 18 Sep 07:54 2007

Re: Running postgres 8.2 in a jail

> Which will hopefully be fixed in 7x, along with attracted routing 
> instances.

Really? Would you happen to have a reference to some specific
information? On sysvipc that is.

--

-- 
/ Peter Schuller

PGP userID: 0xE9758B7D or 'Peter Schuller <peter.schuller@...>'
Key retrieval: Send an E-Mail to getpgpkey@...
E-Mail: peter.schuller@... Web: http://www.scode.org

maomao maomao | 18 Sep 11:23 2007
Picon

post the mail list

my mail address is : maochang1981@...
thanks a lot!
_______________________________________________
freebsd-jail@... mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-jail
To unsubscribe, send any mail to "freebsd-jail-unsubscribe@..."

Scott Lambert | 18 Sep 21:29 2007

Problems with FreeRADIUS in a jail

I've been trying to get FreeRADIUS 2.0 working inside a FreeBSD
6.2-STABLE jail.

The work I've been doing with the Alan DeKok of FreeRADIUS starts with
this message:

https://lists.freeradius.org/pipermail/freeradius-users/2007-September/065883.html

Here is the thread index :

https://lists.freeradius.org/pipermail/freeradius-users/2007-September/thread.html#65883

I am way out of my depth at this point.  I thought I had the problem
found yesterday in FreeRADIUS but Alan says what I did to "fix" it
shouldn't work at all.  He seems to think it is a jail problem.

Is anybody else testing the new version of FreeRADIUS in a jail?

I would greatly appreciate any help I can get on this topic.  

If someone wants to take a look at it, here is a script I am using to
get the current sources:

========================================================================
#!/bin/sh

DATE=`date +%Y%m%d`

fetch ftp://ftp.freeradius.org/pub/freeradius/snapshots/freeradius-server-snapshot-${DATE}.tar.bz2
tar -yxvf freeradius-server-snapshot-${DATE}.tar.bz2
(Continue reading)

James Gritton | 18 Sep 23:03 2007

Hierarchical jails - any current work?

I've been doing some work on a hierarchical jail setup, but I've got
this nagging feeling it's been done before.  Does anyone know of such
an existing project?  If not, I'll put forward my own code.

- James Gritton
  jamie@...
_______________________________________________
freebsd-jail@... mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-jail
To unsubscribe, send any mail to "freebsd-jail-unsubscribe@..."

Alexander Leidinger | 19 Sep 11:57 2007
Picon

Re: Hierarchical jails - any current work?

Quoting James Gritton <jamie <at> gritton.org> (from Tue, 18 Sep 2007  
15:03:12 -0600):

> I've been doing some work on a hierarchical jail setup, but I've got
> this nagging feeling it's been done before.  Does anyone know of such
> an existing project?  If not, I'll put forward my own code.

At  
http://perforce.freebsd.org/branchView.cgi?BRANCH=cdjones%5fjail%5fcurrent are  
changes to improve jails. I don't know if it does what you want, as  
you haven't described how hierarchical jails are supposed to work.

For infor what is available there, I suggest to ask cdjones.

Bye,
Alexander.

--

-- 
HUGH BEAUMONT died in 1982!!

http://www.Leidinger.net    Alexander  <at>  Leidinger.net: PGP ID = B0063FE7
http://www.FreeBSD.org       netchild  <at>  FreeBSD.org  : PGP ID = 72077137
_______________________________________________
freebsd-hackers <at> freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscribe <at> freebsd.org"

Pawel Jakub Dawidek | 19 Sep 16:51 2007
Picon

Re: Hierarchical jails - any current work?

On Tue, Sep 18, 2007 at 03:03:12PM -0600, James Gritton wrote:
> I've been doing some work on a hierarchical jail setup, but I've got
> this nagging feeling it's been done before.  Does anyone know of such
> an existing project?  If not, I'll put forward my own code.

Something like this:

	http://garage.freebsd.pl/mljail.README

I did it some time ago, and this is one of the feature for new jail
implementation with is beeing designed.

--

-- 
Pawel Jakub Dawidek                       http://www.wheel.pl
pjd <at> FreeBSD.org                           http://www.FreeBSD.org
FreeBSD committer                         Am I Evil? Yes, I Am!
Julian Elischer | 19 Sep 21:08 2007

Re: Hierarchical jails - any current work?

Pawel Jakub Dawidek wrote:
> On Tue, Sep 18, 2007 at 03:03:12PM -0600, James Gritton wrote:
>> I've been doing some work on a hierarchical jail setup, but I've got
>> this nagging feeling it's been done before.  Does anyone know of such
>> an existing project?  If not, I'll put forward my own code.
> 
> Something like this:
> 
> 	http://garage.freebsd.pl/mljail.README
> 
> I did it some time ago, and this is one of the feature for new jail
> implementation with is beeing designed.

I hope in conjuction with Marko and the vimage stuff, which is already hierarchical.

> 

_______________________________________________
freebsd-jail@... mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-jail
To unsubscribe, send any mail to "freebsd-jail-unsubscribe@..."

James Gritton | 19 Sep 21:30 2007

Re: Hierarchical jails - any current work?

Pawel Jakub Dawidek wrote:
> Something like this:
> 	http://garage.freebsd.pl/mljail.README
>
> I did it some time ago, and this is one of the feature for new jail
> implementation with is beeing designed

Yes, that's just the thing I'm talking about, so it looks like I have 
indeed be reinventing something.  (The jail scheduling work of cdjones 
it something else I'm interested in, but for another time).

Now the question becomes: how much jail work is out there, and what's 
the likelihood is it seeing the light of day in a released kernel?  I 
hate to be going about coding stuff that's been done before (well, 
actually I enjoy coding it but you know...), but I only ever see 
snippets of jail work mentioned here and there and nothing ever seems to 
get anywhere official.  I figured the place to talk about this was the 
freebsd-jail mailing list, but it seems to be mostly for stuff like 
"getting app X to work in a jail" or "the current jail rc scripts have 
this or that deficiency."  That's why I cross-mailed to freebsd-hackers 
- maybe more appropriate there?

Where's the secret place people really go to communicate this kind of 
thing?  I've done a lot of work in the general jail-like area, and while 
much of it it the same as others' I'd like to share what isn't.  Of 
course, with other people's jail-related projects staying on the 
sidelines so long - and that by those with " <at> freebsd.org" stature - one 
wonders if there's a point.  I don't mean to sound down on anything, 
just wondering what the state of the "jail community" is.  Or where it is.

(Continue reading)


Gmane