mknod within a jail ...
Kris Kennaway
kris at obsecurity.org
Sun Nov 12 22:12:17 UTC 2006
On Sun, Nov 12, 2006 at 10:00:54AM -0500, Lowell Gilbert wrote:
> "Marc G. Fournier" <scrappy at freebsd.org> writes:
>
> > I'm playing with DTC right now, within a Jail ... and one of the steps to set
> > it up is to run mknod to create devices for a chroot environment, which, of
> > course, fail in a jail ...
> >
> > Is there any way around this?
> >
> > Mounting devfs isn't an option, since for each domain in the jail that gets
> > created, it appears that it needs its own chroot env, with its own dev
> > directory ...
> >
> > Am I really stuck? :(
>
> Why don't you run it on the jail filesystem, but from outside of the jail?
Any approach that "requires" running mknod is misguided, since you
can't do this outside of devfs on modern FreeBSD. Mounting devfs
(with appropriate rulesets) is the correct approach.
Kris
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20061112/b551a011/attachment.pgp
More information about the freebsd-questions
mailing list