new jail(8) ignoring devfs_ruleset?
Jamie Gritton
jamie at FreeBSD.org
Fri Feb 15 23:40:22 UTC 2013
On 02/15/13 09:27, Harald Schmalzbauer wrote:
> Hello,
>
> like already posted, on 9.1-R, I highly appreciate the new jail(8) and
> jail.conf capabilities. Thanks for that extension!
>
> Accidentally I saw that "devfs_ruleset" seems to be ignored.
> If I list /dev/ I see all the hosts disk devices etc.
> I set "devfs_ruleset = 4;" and "enforce_statfs = 1;" in jail.conf.
> Inside the jail,
> sysctl security.jail.devfs_ruleset returnes "1".
> But like mentioned, I can access all devices...
>
> Thanks for any help,
>
> -Harry
devfs_ruleset is only used along with mount.devfs - do you also have
that set in jail.conf?
- Jamie
More information about the freebsd-stable
mailing list