Enhancements to the new rc.d/jail script
Doug Barton
DougB at FreeBSD.org
Sun Apr 20 14:03:50 PDT 2003
On Sat, 19 Apr 2003, Scot W. Hetzel wrote:
> Attached are patches for the new rc.d/jail script.
This looks like good work, thanks! My only question, how will this devfs
stuff affect a system that isn't running jails?
Doug
> Index: rc.d/devfs
> ===================================================================
> RCS file: /home/ncvs/src/etc/rc.d/devfs,v
> retrieving revision 1.2
> diff -u -r1.2 devfs
> --- rc.d/devfs 15 Dec 2002 21:56:53 -0000 1.2
> +++ rc.d/devfs 20 Apr 2003 00:10:02 -0000
> @@ -13,6 +13,22 @@
>
> load_rc_config $name
>
> +# Standard Jail ruleset
> +/sbin/devfs rule -s 10 delset
> +/sbin/devfs rule -s 10 add 100 hide
> +/sbin/devfs rule -s 10 add 200 path ptyp* unhide
> +/sbin/devfs rule -s 10 add 300 path ttyp* unhide
> +/sbin/devfs rule -s 10 add 400 path null unhide
> +/sbin/devfs rule -s 10 add 500 path zero unhide
> +/sbin/devfs rule -s 10 add 600 path random unhide
> +/sbin/devfs rule -s 10 add 610 path urandom unhide
> +/sbin/devfs rule -s 10 add 700 path fd unhide
> +/sbin/devfs rule -s 10 add 800 path fd/* unhide
> +/sbin/devfs rule -s 10 add 810 path mdctl unhide
> +/sbin/devfs rule -s 10 add 900 path stdin unhide
> +/sbin/devfs rule -s 10 add 910 path stdout unhide
> +/sbin/devfs rule -s 10 add 920 path stderr unhide
> +
> # Setup DEVFS, ie permissions, links etc.
> #
> if [ -r /etc/rc.devfs ]; then
More information about the freebsd-current
mailing list