Running Tor service in the jail environment
Ian Lepore
ian at freebsd.org
Tue Dec 11 15:51:01 UTC 2018
On Tue, 2018-12-11 at 01:41 +0000, Hubert Hauser wrote:
> I want to torify my FreeBSD old machine purposed to mainly darknet
> activities.
>
> Should I worry about these errors during creating jail?
>
> >
> > Warning: Some services already seem to be listening on all IP,
> (including 127.0.1.1) This may cause some confusion, here they are:
> root
> ntpd 58008 20 udp6 *:123 *:* root ntpd 58008 21 udp4 *:123 *:* root
> lpd
> 48726 6 tcp6 *:515 *:* root lpd 48726 7 tcp4 *:515 *:* Warning: Some
> services already seem to be listening on IP 192.168.1.105 This may
> cause
> some confusion, here they are: root ntpd 58008 23 udp4
> 192.168.1.105:123
> *:* Warning: Some services already seem to be listening on all IP,
> (including 192.168.1.105) This may cause some confusion, here they
> are:
> root ntpd 58008 20 udp6 *:123 *:* root ntpd 58008 21 udp4 *:123 *:*
> root
> lpd 48726 6 tcp6 *:515 *:* root lpd 48726 7 tcp4 *:515 *:|
>
> Should jail have access to loopback interface and public Ethernet
> interface assuming that all traffic from this machine will be routed
> through Tor? Is it necessary to set up a virtual network interface to
> communicate between jails?
You should not be running ntpd inside a jail, it won't have the
priveleges to set the kernel clock anyway, only the ntpd running in a
non-jailed environment can do that.
I suspect the same is true of lpd, but I've never used that and know
nothing about it.
-- Ian
More information about the freebsd-hackers
mailing list