Hi Trent,
How do BSD jails address letting two services talk to one another,
in a limited way?
For example, postfix wants to talk to dovecot's SASL implementation over
a unix socket.
The way this works for me at the moment (on Linux) is that one opens a
socket in the other's chroot area, before chrooting into its own area.
Because it was already open before chroot(2), it can continue using it.
I do not think you can do it this way
(Well, if you would reprogram and use jail(2) or jail_attach(2) in the code instead of chroot(2)?.. besides, it would be one way of writing code for BSD only, a bit of a revenge for the Linuxisms find elsewhere;-)
Of course you can run both in the same jail and do the "usual" chroot.
Or you have them in separate jails and use TCP/IP.
Regards
Peter