1 # These entries should be ADDED to the end of /etc/fstab to
2 # properly set up the girocco chroot jail
4 # /etc/fstab: static file system information.
6 # <file system> <mount point> <type> <options> <dump> <pass>
8 # mount the git repositories in the jail
9 /srv/git /home/repo/j/srv/git none bind 0 0
11 # mount the proc filesystem in the jail
12 # Note that there are two possiblities here, the first is a bind mount and
13 # the second is another proc mount.
14 # The bind mount will always mirror everything in /proc whereas a second
15 # proc mount has the potential of having a separate proc namespace.
16 # Note that some systems (e.g. FreeBSD) must omit the "nodev" option.
17 # Note that some systems (e.g. FreeBSD) will need to use "procfs" for the type.
18 # Note that some systems (e.g. FreeBSD) may need to add the "rw" option.
19 # Note that mounting procfs in a FreeBSD chroot is optional and normally omitted
20 #/proc /home/repo/j/proc none bind 0 0
21 proc /home/repo/j/proc proc nodev,noexec,nosuid 0 0
23 # mount the devfs filesystem in the jail
24 # Note that this is only necessary on systems where mknod does not work
25 # except on devfs mounts (e.g. FreeBSD)
26 # Note that on FreeBSD before starting the chroot, the following commands
27 # may be executed to reduce the number of exposed devices:
28 # devfs -m /home/repo/j/dev ruleset 4
29 # devfs -m /home/repo/j/dev rule applyset
30 #devfs /home/repo/j/dev devfs rw,noexec,nosuid 0 0