Changeset View
Changeset View
Standalone View
Standalone View
usr.sbin/jail/jail.8
Show All 19 Lines | |||||
.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | .\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||||
.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | .\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||||
.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | .\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||||
.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||||
.\" SUCH DAMAGE. | .\" SUCH DAMAGE. | ||||
.\" | .\" | ||||
.\" $FreeBSD$ | .\" $FreeBSD$ | ||||
.\" | .\" | ||||
.Dd November 18, 2020 | .Dd January 25, 2021 | ||||
.Dt JAIL 8 | .Dt JAIL 8 | ||||
.Os | .Os | ||||
.Sh NAME | .Sh NAME | ||||
.Nm jail | .Nm jail | ||||
.Nd "manage system jails" | .Nd "manage system jails" | ||||
.Sh SYNOPSIS | .Sh SYNOPSIS | ||||
.Nm | .Nm | ||||
.Op Fl dhilqv | .Op Fl dhilqv | ||||
▲ Show 20 Lines • Show All 94 Lines • ▼ Show 20 Lines | |||||
not otherwise be changed. | not otherwise be changed. | ||||
.It Fl cmr | .It Fl cmr | ||||
Create a jail if it doesn't exist, or modify (and possibly restart) the | Create a jail if it doesn't exist, or modify (and possibly restart) the | ||||
jail if it does exist. | jail if it does exist. | ||||
.El | .El | ||||
.Pp | .Pp | ||||
Other available options are: | Other available options are: | ||||
.Bl -tag -width indent | .Bl -tag -width indent | ||||
.It Fl d | |||||
Allow making changes to a dying jail, equivalent to the | |||||
.Va allow.dying | |||||
parameter. | |||||
.It Fl f Ar conf_file | .It Fl f Ar conf_file | ||||
Use configuration file | Use configuration file | ||||
.Ar conf_file | .Ar conf_file | ||||
instead of the default | instead of the default | ||||
.Pa /etc/jail.conf . | .Pa /etc/jail.conf . | ||||
.It Fl h | .It Fl h | ||||
Resolve the | Resolve the | ||||
.Va host.hostname | .Va host.hostname | ||||
▲ Show 20 Lines • Show All 51 Lines • ▼ Show 20 Lines | |||||
.It Fl U Ar username | .It Fl U Ar username | ||||
The user name from the jailed environment as whom jailed commands should run. | The user name from the jailed environment as whom jailed commands should run. | ||||
This is deprecated and is equivalent to the | This is deprecated and is equivalent to the | ||||
.Va exec.jail_user | .Va exec.jail_user | ||||
parameter. | parameter. | ||||
.It Fl v | .It Fl v | ||||
Print a message on every operation, such as running commands and | Print a message on every operation, such as running commands and | ||||
mounting filesystems. | mounting filesystems. | ||||
.It Fl d | |||||
This is deprecated and is equivalent to the | |||||
.Va allow.dying | |||||
parameter, which is also deprecated. | |||||
debdrup: I would suggest changing this to
"Allow making changes to a dying jail. This is deprecated and… | |||||
It used to allow making changes to a | |||||
.Va dying | |||||
jail. | |||||
Now such jails are always replaced when a new jail is created with the same | |||||
.Va jid | |||||
or | |||||
.Va name . | |||||
.El | .El | ||||
.Pp | .Pp | ||||
If no arguments are given after the options, the operation (except | If no arguments are given after the options, the operation (except | ||||
remove) will be performed on all jails specified in the | remove) will be performed on all jails specified in the | ||||
.Xr jail.conf 5 | .Xr jail.conf 5 | ||||
file. | file. | ||||
A single argument of a jail name will operate only on the specified jail. | A single argument of a jail name will operate only on the specified jail. | ||||
The | The | ||||
▲ Show 20 Lines • Show All 680 Lines • ▼ Show 20 Lines | |||||
directory. | directory. | ||||
.It Va mount.procfs | .It Va mount.procfs | ||||
Mount a | Mount a | ||||
.Xr procfs 5 | .Xr procfs 5 | ||||
filesystem on the chrooted | filesystem on the chrooted | ||||
.Pa /proc | .Pa /proc | ||||
directory. | directory. | ||||
.It Va allow.dying | .It Va allow.dying | ||||
Allow making changes to a | This deprecated and has no effect. | ||||
bzUnsubmitted Not Done Inline ActionsThis *is* deprecated bz: This *is* deprecated | |||||
It used to allow making changes to a | |||||
.Va dying | .Va dying | ||||
jail. | jail. | ||||
Now such jails are always replaced when a new jail is created with the same | |||||
.Va jid | |||||
or | |||||
.Va name . | |||||
.It Va depend | .It Va depend | ||||
Specify a jail (or jails) that this jail depends on. | Specify a jail (or jails) that this jail depends on. | ||||
When this jail is to be created, any jail(s) it depends on must already exist. | When this jail is to be created, any jail(s) it depends on must already exist. | ||||
If not, they will be created automatically, up to the completion of the last | If not, they will be created automatically, up to the completion of the last | ||||
.Va exec.poststart | .Va exec.poststart | ||||
command, before any action will taken to create this jail. | command, before any action will taken to create this jail. | ||||
When jails are removed the opposite is true: | When jails are removed the opposite is true: | ||||
this jail will be removed, up to the last | this jail will be removed, up to the last | ||||
▲ Show 20 Lines • Show All 511 Lines • Show Last 20 Lines |
I would suggest changing this to
"Allow making changes to a dying jail. This is deprecated and is equivalent to the
.Va allow.dying
parameter, which is also deprecated."
That will make it match the verbiage for -l, -n, -s, and -u/-U, and is a little easier to read.