HEADS UP: multi-IPv4/v6/no-IP jails now in 7-STABLE
Bjoern A. Zeeb
bzeeb-lists at lists.zabbadoz.net
Wed Feb 11 14:35:10 PST 2009
On Wed, 11 Feb 2009, Miroslav Lachman wrote:
> I have a question about INADDR_ANY in relation to new multi-IP jails.
> It was discussed some time ago as PR 84215 [wildcard ip (INADDR_ANY) should
> not bind inside a jail] http://www.freebsd.org/cgi/query-pr.cgi?pr=84215 and
> it seemed fixed, but manpage for jail is still saying:
>
> "Similarly, it might be a good idea to add an address alias flag such that
> daemons listening on all IPs (INADDR_ANY) will not bind on that address,
> which would facilitate building a safe host environment such that host
> daemons do not impose on services offered from within jails."
>
> Can you please clarify the current state?
http://lists.freebsd.org/pipermail/freebsd-jail/2008-November/000623.html
--
Bjoern A. Zeeb The greatest risk is not taking one.
More information about the freebsd-jail
mailing list