[nycbug-talk] Quick question about jail

Trish Lynch trish
Mon May 3 12:15:37 EDT 2004


On Mon, 3 May 2004, Hans Zaunere wrote:

>
>
> > -----Original Message-----
> > From: talk-bounces at lists.nycbug.org
> > [mailto:talk-bounces at lists.nycbug.org] On Behalf Of Jan Schaumann
> > Sent: Monday, May 03, 2004 9:31 AM
> > To: talk at lists.nycbug.org
> > Subject: Re: [nycbug-talk] Quick question about jail
> >
> > Jeronimo Romero <jromero at romero3000.com> wrote:
> > >
> > >
> > > Running Freebsd 4.9 with jail enabled. Ping doesn't seem to
> > work. I get:
> > >
> > > ping: socket: Operation not permitted
> > >
> > > Anybody know why this happens??
>
> Processes within a jail can't open raw sockets.  Thus, traceroute and
> ping won't work.
>
> > The ping in the jail is not setuid?
>
> Won't make any difference; this is enforced by the kernel as a special
> case when the process is marked as jailed.  The UID doesn't have an
> effect here.
>
> H

somewhere theres a patch for this we use to do adns lookups from ircd....

look for adns jail freebsd 4 and ircd on google.


-- 
Trish Lynch					   trish at bsdunix.net
Ecartis Core Team 			      trish at listmistress.org
EFNet IRC Operator/SysAdmin @ irc.dkom.at             AilleCat at EFNet
Key fingerprint = 781D 2B47 AA4B FC88 B919  0CD6 26B2 1D62 6FC1 FF16




More information about the talk mailing list