jail(8) allow.socket_af, unknown oid
jhell
jhell at dataix.net
Fri May 28 02:02:34 UTC 2010
On 05/25/2010 13:54, Glen Barber wrote:
> Hi,
>
> The jail(8) man page has an entry under 'allow.*', allow.socket_af, which
> states to allow access to protocol stacks that have not had jail functionality
> added to them.
>
> However, though socket_af exists in sys/kern/kern_jail.c, the sysctl itself
> does not exist on my system:
>
> orion# sysctl -a | grep socket
> kern.ipc.maxsockets: 25600
> kern.ipc.numopensockets: 35
> security.jail.allow_raw_sockets: 0
> security.jail.socket_unixiproute_only: 1
>
> Is this sysctl missing, or is it not a tunable?
>
> Regards,
>
sysctl -A security.jail.param.allow
Please see -A option to sysctl(1)
Although doing anything with the output from that probably will not help
you much.
--
jhell
More information about the freebsd-jail
mailing list