mknod within a jail ...
Marc G. Fournier
scrappy at freebsd.org
Mon Nov 13 00:23:11 UTC 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- --On Sunday, November 12, 2006 10:00:54 -0500 Lowell Gilbert
<freebsd-questions-local at be-well.ilk.org> wrote:
> "Marc G. Fournier" <scrappy at freebsd.org> writes:
>
>> I'm playing with DTC right now, within a Jail ... and one of the steps to
>> set it up is to run mknod to create devices for a chroot environment,
>> which, of course, fail in a jail ...
>>
>> Is there any way around this?
>>
>> Mounting devfs isn't an option, since for each domain in the jail that gets
>> created, it appears that it needs its own chroot env, with its own dev
>> directory ...
>>
>> Am I really stuck? :(
>
> Why don't you run it on the jail filesystem, but from outside of the jail?
The software we're trying to get working is DTC (ISP control panel), and what
it does is builds a seperate chroot hierarchy per domain created so that the
owner of the domain will be able to ssh in, but also so that any cgi's operate
within that chroot environment ...
So, the 'root' in the vServer would need to be able to do this each time a new
domain is added, which means given *them* the ability to run a command on the
base operating system ...
- ----
Marc G. Fournier Hub.Org Networking Services (http://www.hub.org)
Email . scrappy at hub.org MSN . scrappy at hub.org
Yahoo . yscrappy Skype: hub.org ICQ . 7615664
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (FreeBSD)
iD8DBQFFV7rp4QvfyHIvDvMRArIEAKCbVw2ip55A5FQMngV8rn6l57uyogCcCMX9
hoIAGQ/SE6FNLmGs2jHLlg0=
=ZJvL
-----END PGP SIGNATURE-----
More information about the freebsd-questions
mailing list