On Thu, Apr 12, 2007 at 02:38:33PM +0200, Oliver Fromme wrote: > Ed Schouten wrote: > > Bernd Walter wrote: > > > E.g. hardlink system binaries over multiple jails flaged immuteable. > > > No jail can compromise the data in other jails, while still allowing > > > the kernel to share memory pages for it. > > > > There are nicer ways to do that as far as I know. Just read-only > > nullmount some kind of base install to another directory. > > Memory pages are not shared across different mounts, > including nullmounts (AFAIK), which was Bernd's point. > So Bernd's solution is much better in terms of memory > usage, which is significant if you run a large number > of jails. Pages are shared for file mmaped from different null mounts.
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:39:08 UTC