Adding /dev/random and /dev/urandom to a jail.
Tech Valley Internet - Tony Kivits
tony at techvalley.ca
Thu Jul 19 12:51:42 UTC 2007
At 01:23 AM 7/19/2007, Doug Barton wrote:
>Tech Valley Internet - Tony Kivits wrote:
> > Yes but the random devices are not showing up there.
>
>Please don't post responses at the top of the message on FreeBSD
>lists, it's icky and unnatural. :)
>
>You might want to take a look at what /etc/rc.d/named does to handle
>this for the chroot, I think it may help.
>
>Doug
>
>--
>
> This .signature sanitized for your protection
Thanks Doug,
I realized that I had them reversed write after I had sent it.
I have basically done something similar to what named does and this
is what I have found...
The random and urandom devices are in the jail's /dev directory when
the jail is created and the test you gave me to try did work once
tweaked a bit. But when I run the installation script for hsphere
the two devices disappear out of the /dev directory.
The devices are then inaccessible for all processes until the jail is
restarted.
I have looked in the usually log files and nothing is recorded there.
My configuration is as follows....
# Jail info in host's rc.conf
jail_enable="YES"
jail_interface="xl0"
jail_devfs_enable="YES"
jail_procfs_enable="YES"
jail_list="cp"
jail_cp_rootdir="/usr/jails/cp"
jail_cp_hostname="cp.example.ca"
jail_cp_ip="192.168.1.71"
jail_cp_mount_enable="YES"
jail_cp_devfs_ruleset="devfsrules_thin_jail"
#devfs.rules
[devfsrules_thin_jail=100]
add include $devfsrules_hide_all
add include $devfsrules_unhide_basic
Any help would be appreciated in regards to why the devices are disappearing.
Thanks,
Tony
More information about the freebsd-stable
mailing list