bk> That means you have to consider that the host environment bk> need to be trustworthy if you use jails and as long as you bk> can't guarantee strict isolation of the host environment bk> from the point of view of unprivileged users it would be bk> the wrong way to obscure jails from these users bk> partially, like I suggested. On FreeBSD 5 and later there is mac_partition(4). You could investigate using setpmac(8) to run processes inside the jail with a different partition label than processes in the host environment. -- FreeBSD Volunteer, http://people.freebsd.org/~jkoshyReceived on Sun Feb 05 2006 - 14:30:47 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:38:52 UTC