Re: attach chroot-jail to switchd(8) ?

2018-05-25 Thread Thomas Huber
rdomain is interessting, wasn´t aware of that. thanks for this input Claudio. On 24 May 2018 at 19:58, trondd wrote: > On Thu, May 24, 2018 1:28 pm, Claudio Jeker wrote: > > On Thu, May 24, 2018 at 09:22:32AM -0400, trondd wrote: > >> On Wed, May 23, 2018 4:35 am, Thomas

Re: attach chroot-jail to switchd(8) ?

2018-05-24 Thread trondd
On Thu, May 24, 2018 1:28 pm, Claudio Jeker wrote: > On Thu, May 24, 2018 at 09:22:32AM -0400, trondd wrote: >> On Wed, May 23, 2018 4:35 am, Thomas Huber wrote: >> > Hi all, >> > >> > IÃ*´m just tinkering a little bit and try to mimic some >> "containerization" >> > on >> > OpenBSD with chroot.

Re: attach chroot-jail to switchd(8) ?

2018-05-24 Thread Claudio Jeker
On Thu, May 24, 2018 at 09:22:32AM -0400, trondd wrote: > On Wed, May 23, 2018 4:35 am, Thomas Huber wrote: > > Hi all, > > > > I´m just tinkering a little bit and try to mimic some "containerization" > > on > > OpenBSD with chroot. Is it somehow possible to attach a chrooted > > envirionment to

Re: attach chroot-jail to switchd(8) ?

2018-05-24 Thread trondd
On Wed, May 23, 2018 4:35 am, Thomas Huber wrote: > Hi all, > > I´m just tinkering a little bit and try to mimic some "containerization" > on > OpenBSD with chroot. Is it somehow possible to attach a chrooted > envirionment to swtichd(8) ? > > Thanks > Thomas > OpenBSD's chroot is not like a

Re: attach chroot-jail to switchd(8) ?

2018-05-24 Thread Ken M
I can appreciate the spirit of that. Carry on good sir. Ken On Thu, May 24, 2018 at 01:19:07PM +0200, Thomas Huber wrote: > Hi Ken, > > sure, thats the way to go for docker, kubernetes and [add buzzword here]. > The _why_ is more about tinkering and getting deeper into the rabbit-hole. > >

Re: attach chroot-jail to switchd(8) ?

2018-05-24 Thread Thomas Huber
Hi Ken, sure, thats the way to go for docker, kubernetes and [add buzzword here]. The _why_ is more about tinkering and getting deeper into the rabbit-hole. Thomas On 24 May 2018 at 12:51, Ken M wrote: > > I want to ask the question of why? And why this way? I think if you

Re: attach chroot-jail to switchd(8) ?

2018-05-24 Thread Ken M
I want to ask the question of why? And why this way? I think if you want docker like functionality, just add docker to openbsd. The best way to do so is to add a lightweight linux into vmm and connect to that docker daemon. Alpine or Rancher are probably the best bet for that. I say nothing on

Re: attach chroot-jail to switchd(8) ?

2018-05-24 Thread Thomas Huber
Hi Reyk, no it is not about chroot-ing switchd. What i have in mind is a kind of poor-mans kubernetes or docker-swarm which makes use of chroot(8), login.conf(5) and mount_vnd(8) to isolate, limit and encapsulate some processes. I´ll call this the "chroot-jail" and thought it is common wording

Re: attach chroot-jail to switchd(8) ?

2018-05-23 Thread Reyk Floeter
switchd is already privsep‘ed with a chroot jail. But I don’t quite understand what you mean. > Am 23.05.2018 um 10:35 schrieb Thomas Huber : > > Hi all, > > I´m just tinkering a little bit and try to mimic some "containerization" on > OpenBSD with chroot. Is it somehow