[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [ezjail] Multiple basejail
Let me put it this way. On the system we have a bunch of system jails and using full basejail makes sense.
But then we have some userjails where we don't want all the binaries for users. Then we have flavours when we setup all the other non base stuff user need. For example jail user can only use bin files for running tasks like creating files and folders, viewing, editing etc. But no ssh, no system tools. Such minimum basejail we build from sources and then run a script to remove some stuff from it. Inside jail everything is readonly, but home folder is only read/write (no execute).
I hope this make more clear of why we need this.
On 14. jun. 2012, at 13:21, Dirk Engling wrote:
> On 14.06.12 13:11, Uroš Gruber wrote:
>> is there a way to handle multiple basejail and somehow tell
>> ezjail-admin to use other than basejail folder? I would like to have
>> more basejails avaliable because some of them needs to be striped to
>> the minimum. Some useful functionality for this have qjail but there
>> is a lot of ezjail stuff missing.
> I don't quite get it. Why would you want to further "strip down" the
> base jail, when it is shared between all jails. Having it mounted to
> several jails does not increase the disk usage, however providing
> further "stripped down" basejails does.