gmirror security problem on jail env?
Manuel Martini
list at manuelmartini.it
Sat May 5 13:43:47 UTC 2007
# uname -a
FreeBSD xxxxxxx 6.2-STABLE FreeBSD 6.2-STABLE #0: Wed Apr 11 14:58:49
CEST 2007 martin at xxxxx
# sysctl -a | grep jail
security.jail.set_hostname_allowed: 0
security.jail.socket_unixiproute_only: 1
security.jail.sysvipc_allowed: 0
security.jail.enforce_statfs: 2
security.jail.allow_raw_sockets: 0
security.jail.chflags_allowed: 0
security.jail.jailed: 1
# ls /dev
fd null ptyp1 ptyp3 ptyp5 stderr stdout ttyp1
ttyp3 ttyp5 zero
log ptyp0 ptyp2 ptyp4 random stdin ttyp0 ttyp2
ttyp4 urandom
# df
Filesystem 1K-blocks Used Avail Capacity Mounted on
/dev/mirror/gm0s1g 129719744 17056610 102285556 14% /
# gmirror status
Name Status Components
mirror/gm0 COMPLETE da0
da1
so I think I can do...
gmirror remove.. stop.. deactive...
inside jails!
it's true?
More information about the freebsd-stable
mailing list