setting MIBs on a per jail bases
Harald Schmalzbauer
h.schmalzbauer at omnilan.de
Thu Feb 14 13:32:52 UTC 2013
schrieb Harald Schmalzbauer am 14.02.2013 14:18 (localtime):
> schrieb Fbsd8 am 06.02.2013 17:57 (localtime):
>> Fleuriot Damien wrote:
>>> Running 8.3 here and the answer is no.
>>>
>>>
>>> On Feb 6, 2013, at 5:39 PM, Fbsd8 <fbsd8 at a1poweruser.com> wrote:
>>>
>>>> Is there a way to set these MIBs
>>>> on a per jail bases?
>>>>
>>>> allow.mount.nullfs
>>>> allow.raw_sockets
>>>> cpuset.id
>>>> securelevel
>>>
>>>
>> Rereading the "man jail" for 9.1 talks about securelevel as a jail
>> parammeter. So correct me if I an wrong. All the security.jail.param.*
>> MIBs are set in rc.conf or /etc/jail.conf file on a per jail bases by
>> changing the word "parm" to the jailname?
>>
> This applies to jail.conf(5).
> That's a entirely new way to handle jails in FreeBSD 9.1. Very nice, but
> not included in rc.d.
>
> If you want to keep the traditional way running jails, I made a patch
> some time ago to control more per-jail tunables.
> Here you can donwload it for -9:
> ftp://ftp.omnilan.de/pub/FreeBSD/OmniLAN/deploy-tools/local-patches/src/jail-allow-selectables.patch_9
> That also irons some ip configuration cosmetics, see defaults/rc.conf.
See also
http://docs.freebsd.org/cgi/getmsg.cgi?fetch=686783+0+archive/2010/freebsd-stable/20100704.freebsd-stable
-Harry
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 196 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20130214/f274288f/attachment.sig>
More information about the freebsd-questions
mailing list