cvs commit: src/usr.bin/killall killall.1 killall.c
src/usr.sbin Makefile src/usr.sbin/jail jail.8 jail.c
src/usr.sbin/jexec Makefile jexec.8 jexec.c src/usr.sbin/jls
Makefile jls.8 jls.c
David Schultz
das at FreeBSD.ORG
Thu Apr 10 00:28:07 PDT 2003
On Wed, Apr 09, 2003, Alfred Perlstein wrote:
> * Robert Watson <rwatson at FreeBSD.org> [030409 16:24] wrote:
> >
> > On Thu, 10 Apr 2003, Pawel Jakub Dawidek wrote:
> > >
> > > And there can't be names spoofing. (If, ofcourse '.' is invalid char in
> > > jail name:)).
> >
> > Sounds reasonable to me, although a bit more trouble to parse and render
> > :-).
>
> And what kind of path seperator is '.'?
Well *someone* has never seen TOPS 20. ;-)
FWIW, I've implemented a similar system of hierarchical protection
boundaries before, and I wound up doing the parsing in userland
and passing an array of integers to the kernel. (I limited the
depth to 8, which is kludgy but sufficient in practice.) For what
I was doing race conditions were not an issue, but they might be
problematic here.
More information about the cvs-all
mailing list