Re: jails, cron and sendmail
- From: David King <dking@xxxxxxxxxxxxx>
- Date: Mon, 28 Aug 2006 09:21:52 -0700
Fixed how? Disallow jailed applications to connect to 127.0.0.1,Yup. I wasn't aware of that strange behavior of jails. That should beThe default configuration doesn't expose sendmail to the publiclyWhich is rewritten to the jails (externally visible) address on a connect()
visible IP addres. The daemon it runs only listens for connections to
the localhost address.
fixed.
and thus break most of them, or have them reach 127.0.0.1 on the
host system and weaken the security?
Would it be too much to ask to let the system keep lo0, and give the first jail lo1, the second jail lo2...? That is, a separate loopback for each jail?
_______________________________________________
freebsd-hackers@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@xxxxxxxxxxx"
- References:
- jails, cron and sendmail
- From: Dirk Engling
- Re: jails, cron and sendmail
- From: Mike Meyer
- Re: jails, cron and sendmail
- From: Dirk Engling
- Re: jails, cron and sendmail
- From: Mike Meyer
- Re: jails, cron and sendmail
- From: Dirk Engling
- Re: jails, cron and sendmail
- From: Mike Meyer
- Re: jails, cron and sendmail
- From: Fabian Keil
- jails, cron and sendmail
- Prev by Date: Re: A handy utility (at least for me)
- Next by Date: Re: A handy utility (at least for me)
- Previous by thread: Re: jails, cron and sendmail
- Next by thread: Re: jails, cron and sendmail
- Index(es):
Relevant Pages
|
