From owner-FreeBSD-users-jp@jp.FreeBSD.org Sat Sep 13 03:08:01 2003
Received: (from daemon@localhost)
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) id h8CI81225792;
	Sat, 13 Sep 2003 03:08:01 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from mo03.iij4u.or.jp (mo03.iij4u.or.jp [210.130.0.20])
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) with ESMTP/inet id h8CI81w25787
	for <FreeBSD-users-jp@jp.FreeBSD.org>; Sat, 13 Sep 2003 03:08:01 +0900 (JST)
	(envelope-from mass@kk.iij4u.or.jp)
Received: from mdo00.iij4u.or.jp (mdo00.iij4u.or.jp [210.130.0.170])
	by mo03.iij4u.or.jp (8.8.8/MFO1.5) with ESMTP id DAA01162
	for <FreeBSD-users-jp@jp.FreeBSD.org>; Sat, 13 Sep 2003 03:08:00 +0900 (JST)
Received: 4UMDO00 id h8CI80u04873; Sat, 13 Sep 2003 03:08:00 +0900 (JST)
Received: 4UMRO01 id h8CI7xH22609; Sat, 13 Sep 2003 03:07:59 +0900 (JST)
	from wahnsinn.wakashio.localnet (localhost [127.0.0.1])
	for <FreeBSD-users-jp@jp.FreeBSD.org>; (authenticated)
From: Masao Sanada <mass@kk.iij4u.or.jp>
To: FreeBSD-users-jp@jp.FreeBSD.org
Message-Id: <20030913030759.2135e878.mass@kk.iij4u.or.jp>
X-Mailer: Sylpheed version 0.9.4 (GTK+ 1.2.10; i386-portbld-freebsd5.1)
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-2022-JP
Content-Transfer-Encoding: 7bit
Reply-To: FreeBSD-users-jp@jp.FreeBSD.org
Precedence: list
Date: Sat, 13 Sep 2003 03:07:59 +0900
X-Sequence: FreeBSD-users-jp 76226
Subject: [FreeBSD-users-jp 76226] devfs ruleset apply to jail problem?
Sender: owner-FreeBSD-users-jp@jp.FreeBSD.org
X-Originator: mass@kk.iij4u.or.jp
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+030902

mass$B$H?=$7$^$9!#F|:"$h$j(BROM$B$7$F$*$j$^$7$?$,!"(BSubject$B$N7o$K4X$7$^$7$F(B
$B$s$s(B? $B$H$$$&$h$&$J>u67$K$J$j$^$7$F!"$4=u8@$r;r$j$?$/%a!<%kCW$7$^$9!#(B
$BEv(BML$B$K$O$8$a$FEj9F$9$k$3$H$b$"$j!">u67@bL@$J$IB?!9@[$$E@$,$"$j$^$9$,!"(B
$B2?B4$4MF<O2<$5$$!#(B

$B%[%9%H4D6-!'(B
FreeBSD 5.1-CURRENT #0: Fri Sep 12 03:54:46 JST 2003

jail$B$r;H$C$F(Bwww$B%5!<%P$r9=C[$7$h$&$H;W$$!"(BUNIX USER 10$B7n9f(B $B$H(B man 8 jail
$B$r;29M$K!"(B
/home/jail/www $B0J2<$KG[I[J*0l<0(B( 9/12 am2:00$B:"(Bcvsup --> make world )$B$r(B
$BEjF~$7!"%[%9%HB&$NDj5A%U%!%$%k$O0J2<$N$h$&$K5-=R$rDI2C$7$^$7$?!#(B

/etc/rc.conf
--------------------
ifconfig_fxp0="inet 192.168.1.10 netmask 0xffffff00"
ifconfig_fxp0_alias0="inet 192.168.1.11 netmask 0xffffffff"
jail_enable="YES"
jail_list="www"
jail_set_hostname_allow="NO"
jail_www_rootdir="/home/jail/www"
jail_www_hostname="www.XXXXX.XXX"
jail_www_ip="192.168.1.11"
jail_www_devfs_enable="YES"
jail_www_devfs_ruleset="11"

/etc/devfs.rules
--------------------
[devfsrules_jail_www=11]
add include $devfsrules_hide_all
add include $devfsrules_unhide_basic
# add $B9T$N(B $devfs$B!A!A(B $B$O(B /etc/defaults/devfs.rules $B$N$b$N!#(B

$B$G%j%V!<%H$r$+$1!"%[%9%HB&$G(B
# ls /home/jail/www/dev
$B$7$F$_$k$H(B /dev $B$HFbMF$OF1$8$G!"A4$/(Brule$B$,E,MQ$5$l$F$$$^$;$s!#(B
# devfs rule -s 11 show
100 include 1
200 include 2
$B$H!"(Bruleset$B$O$"$k$N$G!"$b$N$O;n$7$K<jBG$A$G!"(B
# devfs -m /home/jail/www/dev rule -s 11 applyset
# ls /home/jail/www/dev
null            random          urandom@        zero
$B$"$l(B? $B$$$d!"<jBG$A$G@.8y$7$F$b4r$7$/$J$$$s$G$9$,!#(B

/etc/rc.d/jail $B$+$i8F$s$G$k(B /etc/rc.subr $B$N(B devfs_mount_jail() $BFb$G(B
devfs_apply_ruleset() $B$K9T$C$F$J$$$N$,860x$G$O(B!?
$B$H!"(B /etc/rc.subr $B$r$$$m$$$m$$$8$/$C$F$b8z2L$J$7!#(B(sleep$B$H$+(B...)

$B8=:_$O(B /usr/local/etc/rc.d $B$K(Bruleset$B$r(Bapply$B$9$k$*<j@=%9%/%j%W%H$rCV$$$F(B
$B2sHr$7$F$$$^$9!#(B
$B$;$C$+$/(B /etc/rc.d/jail $B$G(Bdevfs$B$X$N%"%W%m!<%A$,$"$k$N$G$9$+$i$=$A$i$r(B
$B;H$$$?$$$N$G$9$,!"$*<j@=%9%/%j%W%H$r;H$o$J$$NI$$(B(?)$B<j$O$J$$$G$7$g$&$+!#(B


$B$^$?$b$&0l$D(Bdevfs$BMm$_$G$9$,!"(B
$B>e5-(B /usr/local/etc/rc.d $B$K%9%/%j%W%H$rCV$$$?>uBV$G5/F0$7!"%[%9%HB&$K(B
ssh$B$G(B $B%m%0%$%s$9$k$H!"(Bjail$BMQ$N(Bdevfs$B$K(B ptyp*, ttyp* $B$,8+$($F$7$^$$$^$9!#(B
# ls /home/jail/www/dev/
null            ptyp1           ttyp0           urandom@
ptyp0           random          ttyp1           zero
$B$3$l$O$"$^$j4r$7$/$J$+$C$?$j$9$k$s$G$9$,(B...

$B:#F|0lF|$O$=$s$J$3$s$J$G=*$o$j$^$7$?!#$3$s$J:n6H$,3d$H3Z$7$+$C$?$j(B...

-- 
-==-==-==-==-==-==-==-==-==-==-==-==-
  $B??ED(B $B2m1{(B (Masao Sanada)
   mail to ...  mass@kk.iij4u.or.jp
-==-==-==-==-==-==-==-==-==-==-==-==-
