Mercurial > hgrepos > FreeBSD > ports > sysutils > local-bsdtools

changeset 174:9b23832722dd

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Make /usr/home a separate dataset in a jail. This makes it more analogous to the standard layout of boot environments.
author Franz Glasner <hg@dom66.de>
date Tue, 16 Aug 2022 11:11:28 +0200
parents 6782ac823f86
children c925150deac8
files sbin/fjail
diffstat 1 files changed, 1 insertions(+), 0 deletions(-) [+]
line wrap: on
line diff
--- a/sbin/fjail	Tue Aug 16 08:34:34 2022 +0200
+++ b/sbin/fjail	Tue Aug 16 11:11:28 2022 +0200
@@ -175,6 +175,7 @@
     zfs create ${_zfsopts} -o atime=off                                                                      "${_ds}"
     zfs create ${_zfsopts} -o sync=disabled -o setuid=off                                                    "${_ds}/tmp"
     zfs create ${_zfsopts}                                                                                   "${_ds}/usr"
+    zfs create ${_zfsopts} -o setuid=off                                                                     "${_ds}/usr/home"
     zfs create ${_zfsopts}                                                                                   "${_ds}/usr/local"
     zfs create ${_zfsopts}                                                                                   "${_ds}/var"
     zfs create ${_zfsopts} -o exec=off -o setuid=off                                                         "${_ds}/var/audit"