ne1 want my jail notes?

[red8Rain]

So this freebsd newbie learned to setup jails in freebsd 4.10.

Does anyone want my notes for it?

[kyro]

:) i want it ... it looks u have gone far and deep into the jungles of freebsd server setyp

anshu.kyro at gmail dot com

[markwolfe Veteran]

Post it here (if possible).

I am sure that others will find it handy, too! :yes:

[red8Rain]

it looks u have gone far and deep into the jungles of freebsd server setyp

you have no idea how hard it is for a freebsd newbie. Every document you read is different from the previous one.

run export DIR=/usr/jails/ip.address

then download makejail.sh.txt script [rename to makejail.sh]

Then the following will take you all the way to setting up apache

:: Removing a jail ::

cd into the jail folder (usually /usr/jails/<ip.address>

chflags -R noschg * && rm -rf *

then cd .. && rmdir jail

:: Starting the Jail installation ::

export DIR=/usr/jails/ip.address

./makejail.sh

YES

cp -R /usr/ports /usr/jails/ip.address/usr/

cp /etc/rc.conf /usr/jails/ip.address/etc/

cp /etc/resolv.conf /usr/jails/ip.address/etc/

add 'jail /usr/jails/ip.address webmatrix /usr/local/bin/bash /etc/rc' to /etc/rc.local

:: entering jail ::

jail /usr/jails/ip.address/ webmatrix ip.address /bin/tcsh

*** webmatrix is the jail's hostname

added the following to /etc/hosts

ip.address hostname

ip.address hostname

ip.address hostname

cd /usr/ports

cd security/ssh2

make -DWITHOUT_X11 install clean

cd /usr/ports/shells/bash2

make install

vi /usr/local/etc/ssh2/sshd_config

- uncomment and edited the following:

PermitRootLogin? ? ? ? ? ? ? ? no

ListenAddress? ? ? ? ? ? ? ? ?  ip.address

touch /etc/fstab

passwd root

*** enter root's password ***

pw user add -n <username> -G wheel -k /etc/skel -s /usr/local/bin/bash -d /home/<username> -m

passwd username

*** enter username's password ***

:: edit /etc/profile ::

alias ls="ls -G"

export PS1="\n\[\e[00m\e[2;32m[\e[0m\e[1;01m\T \e[00m\e[1;32m\u@\h\e[00m\e[2;32m\]:\[\e[00m\e[1;01m\w\e[00m\e[2;32m]\e[00m\n\e[1;32m$\e[0m "

tzsetup

:: exiting jail ::

ps -aux | grep ssh

root? 5698? 0.0? 0.2? 2476 2092? ??? SJ? ? 3:39PM?  0:00.13 /usr/local/sbin/sshd2

root? 5678? 0.0? 0.2? 2332 2020? ??? IsJ?  3:39PM?  0:00.00 /usr/local/sbin/sshd2

kill -HUP 5678

sh /etc/rc.shutdown

kill -15 -1

:: On the main install ::

jail /usr/jails/ip.address webmatrix /usr/local/bin/bash /etc/rc

::SSH into the jail::

cd /usr/ports

make search name=mysql

cd databases/mysql323-server

make install

/usr/local/bin/mysqladmin -u root? password 'new-password'

added /usr/local/etc/rc.d/mysql-server.sh to /etc/rc.conf

cd /usr/ports/www/apache13

make APACHE_PREF_TUNING=YES all install

added apache_enable="YES" to /etc/rc.conf

Hope this helps anyone that might be trying to setup a jail.

The 'man jail' documentation made it look so easy. It tells you to copy /stand/sysinstall to the jail's folder and then run sysinstall. The only thing is that it will error because the jail doesn't have any nameserver setup in the /etc/resolv.conf file. So you will get an error stating that no network is found or something like that.

makejail.sh.txt

[red8Rain]

*EDIT*

Where it reads

:: On the main install ::

jail /usr/jails/ip.address webmatrix /usr/local/bin/bash /etc/rc

it should read instead:

jail /usr/jails/ip.address webmatrix ip.address /bin/sh /etc/rc

If you used the previous command, you will get an error:

jail: Could not make sense of ip-number: /bin/sh

[kyro]

^ thanx for the corrections and posting this all :)