Unfortunately not, FreeBSD has a more in-depth jail mechanism with kernel support.. but it's quite an extensive modification and very unlikely to be ported easily.
The problem here is that the primary developers of sysjail assumed like many others that systrace was designed for security.. but the man page for it has always warned about a major design flaw for many years.
This doesn't mean that systace can't be useful in controlled situations, it shouldn't have been purged immediately like the NetBSD folks decided to do.
If you try to explain what you require, it may be possible for to you achieve the "security" you desire using traditional (..and/or OpenBSD specific) mechanisms, so please consider telling us a little more about your setup.
I personally don't recommend virtualization or emulation, but assuming this isn't going into production.. it may be an option for you.
|