On Mon, 3 Apr 2006, Robert Watson wrote: > So the question is this: if you load System V IPC support after you > start a jail, how do we handle jails that have already started? Do we go > out and create new name spaces for jails already started (a problem for > method (1), because it implies System V IPC will have pretty intimate > knowledge of jails, and know how to walk lists, etc), do we deny access > to System V IPC for jails not present when it was loaded? Likewise, > although we tend to refer to the different IPC mechanisms as in a single > category, System V IPC, there are actually three name spaces, and the > functionality for each can be loaded separately. Stupid question, but why does a namespace need to be created prior to a process in the jail needing it? "if jail requests IPC, and IPC is loaded, then create namespace at that point" ... ? ---- Marc G. Fournier Hub.Org Networking Services (http://www.hub.org) Email: scrappy_at_hub.org Yahoo!: yscrappy ICQ: 7615664Received on Mon Apr 03 2006 - 17:07:13 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:38:54 UTC