Prototyping for basejail distribuition

From: "Ricardo A. Reis" <ricardo_bsd@xxxxxxxxxxxx>
Date: Thu, 13 Apr 2006 17:21:38 -0300

Hi,

I attach 2 files in this email, the first is a Makefile and the second is jail.conf.
For demonstre my idea i resolved create one "Pseudo Prototyping", for test is necessary:

1 - Create dir /usr/local/basejail
2 - Copy Makefile to /usr/local/basejail
3 - Copy jail.conf to /etc
4 - The initial basejail is precompiled is distributed in CD1,
for simular basejail is necessary a installworld structure in /usr/local/basejail
cd /usr/src ; make installworld DESTDIR=/usr/local/basejail

Now is necessary config jail.conf,

-----
#sample template for create freebsd jail
#
# RC.CONF GLOBAL VARIABLES
#
exec_start="/bin/sh /etc/rc"
exec_stop="/bin/sh /etc/rc.shutdown"
devfs_enable="NO"
fdescfs_enable="NO"
procfs_enable="NO"
mount_enable="NO"
devfs_ruleset="ruleset_name"
flags="-l -U root"
#
# JAIL RC.CONF
#
sendmail_enable="NO"
inetd_flags="-wW -a"
rpcbind_enable="NO"
network_interfaces=""
#
# FILES
#
copy_to_jail="/etc/localtime /etc/resolv.conf /etc/csh.cshrc /etc/csh.login"
#
# JAILS
#
jail_node01_rootdir="/usr/jail/node01"
jail_node01_hostname="node01.example.com"
jail_node01_ip="127.0.0.1 "

jail_node02_rootdir="/usr/jail/node02"
jail_node02_hostname="node02.example.com"
jail_node02_ip="127.0.0.2 "
-------
In this moment is possible create large numbers of jail, i
implemente in makefile,

[root@daemon:/usr/local/basejail] # make

Sample in /usr/share/examples/etc/jail.conf

jail == create jail
rcconf == create rc.conf for start jails
etcconfig == create rc.conf for jails and copy file
showconfig == show information

Thanks for any comments,
Sorry for my english and poor Makefile.

--
Ricardo A. Reis
UNIFESP
Unix and Network Adm

Attachment: jail.conf
Description: Binary data

Attachment: Makefile
Description: Binary data

_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"

Prev by Date: Re: Question about Export Restrictions
Next by Date: IPFW Problems?
Previous by thread: Question about Export Restrictions
Next by thread: IPFW Problems?
Index(es):
- Date
- Thread

Relevant Pages

Prototyping for basejail distribuition
... I attach 2 files in this email, the first is a Makefile and the second is jail.conf. ... For demonstre my idea i resolved create one "Pseudo Prototyping", ... for simular basejail is necessary a installworld structure in /usr/local/basejail ... # JAIL RC.CONF ...
(freebsd-current)
Fwd: Prototyping for basejail distribuition
... Subject: Prototyping for basejail distribuition ... I attach 2 files in this email, the first is a Makefile and the second is ... - The initial basejail is precompiled is distributed in CD1, ... # JAIL RC.CONF ...
(freebsd-stable)
JAIL - building perl 5.1? fails on 8.2-STABLE
... I'm trying to build perl5.12 in a jail running on 8.2-STABLE, ... chmod 644 shared.bs ... "makefile", ...
(freebsd-questions)