[nycbug-talk] Quick question about jail
Trish Lynch
trish
Mon May 3 12:15:37 EDT 2004
On Mon, 3 May 2004, Hans Zaunere wrote:
>
>
> > -----Original Message-----
> > From: talk-bounces at lists.nycbug.org
> > [mailto:talk-bounces at lists.nycbug.org] On Behalf Of Jan Schaumann
> > Sent: Monday, May 03, 2004 9:31 AM
> > To: talk at lists.nycbug.org
> > Subject: Re: [nycbug-talk] Quick question about jail
> >
> > Jeronimo Romero <jromero at romero3000.com> wrote:
> > >
> > >
> > > Running Freebsd 4.9 with jail enabled. Ping doesn't seem to
> > work. I get:
> > >
> > > ping: socket: Operation not permitted
> > >
> > > Anybody know why this happens??
>
> Processes within a jail can't open raw sockets. Thus, traceroute and
> ping won't work.
>
> > The ping in the jail is not setuid?
>
> Won't make any difference; this is enforced by the kernel as a special
> case when the process is marked as jailed. The UID doesn't have an
> effect here.
>
> H
somewhere theres a patch for this we use to do adns lookups from ircd....
look for adns jail freebsd 4 and ircd on google.
--
Trish Lynch trish at bsdunix.net
Ecartis Core Team trish at listmistress.org
EFNet IRC Operator/SysAdmin @ irc.dkom.at AilleCat at EFNet
Key fingerprint = 781D 2B47 AA4B FC88 B919 0CD6 26B2 1D62 6FC1 FF16
More information about the talk
mailing list