This is something that I would really like to see implemented. In
particular, it would be nice to have something like a Global Zone with
SUNWCXall and then be able to build Local Zones with SUNWCrnet for
minimized whole root zones for webservers and the like and Local Zones
with SUNWCuser for other
Instead of snooping the traffic, why not do it through DTrace? That
should meet your security requirements nicely.
fpsm
On Tue, Dec 16, 2008 at 11:59 AM, Christine Tran
wrote:
> Hi,
>
> I am putting 2 applications that talk to each other on two non-global
> zones of type exclusive-ip. I do this
I used the following package list in a jumpstart profile when building
a cluster in the lab recently. There is still quite a bit of cruft
that could be trimmed out of this list - I forced to add quite a few
packages to resolve dependencies for the "required for our standard
build" junk (mostly the
On Wed, Jan 21, 2009 at 2:27 PM, Edward Pilatowicz
wrote:
> well, certainly you could remove packages, but why bother.
> disk space is cheap.
> ed
For the same reasons that you don't install unneeded packages in the
first place: security, stability and space.
fpsm
___
On Wed, Jan 21, 2009 at 3:45 PM, Edward Pilatowicz
wrote:
> On Wed, Jan 21, 2009 at 03:31:05PM -0500, Fredrich Maney wrote:
>> On Wed, Jan 21, 2009 at 2:27 PM, Edward Pilatowicz
>> wrote:
>> > well, certainly you could remove packages, but why bother.
>> > disk
On Wed, Jan 21, 2009 at 3:53 PM, Jerry Jelinek wrote:
> Thats really not the focus of the s8 branded zone.
Understood. However the OP asked if it made sense to do so. In my view
it is nearly always worth the negligible amount of time and effort
required to minimize and harden a system.
> If you'
Why not simply create a writable /opt/local and using a symlink to it
from /usr/local ?
On Sun, Jan 25, 2009 at 10:59 AM, Jeff Victor wrote:
> Hi Jason,
>
> I frequently recommend creating a writable /usr/local under the
> read-only /usr to solve this problem.
>
> One simple method to do this is:
On Mon, Feb 16, 2009 at 12:11 PM, Mike Gerdts wrote:
> On Mon, Feb 16, 2009 at 11:01 AM, Moore, Joe wrote:
[...]
>> As an alternative to installing the full OEM cluster, you can install just
>> the sun4v architecture packages on the sun4u machine (and sun4u on the sun4v
>> machine) as describ
On Wed, Mar 25, 2009 at 3:42 PM, bob netherton wrote:
> Michael Barto wrote:
>>
>> After you create a zone, can you later set up CPU caps, numbers of CPU's,
>> memory and any of the other parameters. Is there list of what cannot be
>> change after its creation?
>
> At this point, not a lot. I