Network namespaces in FreeBSD
Steve O'Hara-Smith
steve at sohara.org
Thu Dec 24 22:57:49 UTC 2020
On Thu, 24 Dec 2020 13:32:10 -0800
Ihor Antonov <ihor at antonovs.family> wrote:
> On 12/24/20 12:19 PM, Steve O'Hara-Smith wrote:
> > pkg jail nginx --jail webserver-3 --ip4addr ...
> >
> > and obtain a jail with just enough in it to run nginx (or
> > whatever package you choose) and nothing else - by that I mean not a
> > base system with the necessary packages but a system stripped of
> > everything but the dependencies of the application - if the application
> > doesn't need ls then ls isn't there.
> >
> Yes, that too.
>
> In linux world there is such a ting [1] and it is quite interesting,
Not quite - AIUI those are manually constructed docker images, what
I was thinking of was an extension to pkg to *automatically* create that
minimal environment possibly with the aid of hints (as few as possible).
--
Steve O'Hara-Smith <steve at sohara.org>
More information about the freebsd-questions
mailing list