Re: [Vserver] No luck with chroot-barrier:
 vserver development mailing list 
[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]

Re: [Vserver] No luck with chroot-barrier

From: Björn Steinbrink <B.Steinbrink_at_gmx.de>
Date: Tue 07 Mar 2006 - 22:43:56 GMT
Message-ID: <20060307224356.GA9764@atjola.homenet>

On 2006.03.08 09:10:39 +1100, Tony and Robyn Lewis wrote:
> I can't seem to get the chroot-barrier to work.
>
> == in guest, before setting chroot-barrier ==
> tony@rice:~$ date
> Tue Mar 7 21:43:19 UTC 2006
>
> == in host, turning on chroot-barrier ==
> tony@mystic:~$ sudo setattr --barrier /var/lib/vservers/rice

The barrier should be set on the parent directory, so the correct thing
to do would be:
setattr --barrier /var/lib/vservers/rice/..

> == in guest, after chroot-barrier ==
> tony@rice:~$ date
> -bash: /bin/date: Permission denied

Yep, cause you just denied access to the guest's / directory :)

HTH
Björn
_______________________________________________
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver
Received on Tue Mar 7 22:43:33 2006

[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]
Generated on Tue 07 Mar 2006 - 22:43:36 GMT by hypermail 2.1.8