Bind to port <1024 in jail
Stefan Bethke
stb at lassitu.de
Mon Aug 20 16:35:59 UTC 2018
> Am 20.08.2018 um 18:32 schrieb Bjoern A. Zeeb <bzeeb-lists at lists.zabbadoz.net>:
>
> On 20 Aug 2018, at 16:22, Stefan Bethke wrote:
>
>>>> Is there a way to allow regular processes to bind to low ports?
>>>
>>> you have to set it on the base system; alternatively with vnet you might be able to change it per-jail.
>>
>> Do you feel it’s OK to enable VIMAGE in -stable? When I tried last in 2016, I had stability issues, I think related to pf.
>
> “If you know what you are doing it won’t panic” ;-) I think with 12 I’d be a lot more confident about stability. Most fixes could not and were not MFCed.
OK then, should I move to -current and try there? I’ve not tracked -current on a production box in years (I think the last time was around 3 or 4), but I’m willing to give it a go, seeing that the code freeze is about to start.
Stefan
--
Stefan Bethke <stb at lassitu.de> Fon +49 151 14070811
More information about the freebsd-stable
mailing list