Date: Sun, 6 Jan 2008 13:20:33 +0200 From: Mykola Dzham <freebsd@levsha.org.ua> To: Julian Elischer <julian@elischer.org> Cc: Qing Li <qingli@freebsd.org>, FreeBSD Net <freebsd-net@freebsd.org>, arch@freebsd.org, Ivo Vachkov <ivo.vachkov@gmail.com>, Robert Watson <rwatson@freebsd.org>, Vadim Goncharov <vadimnuclight@tpu.ru> Subject: Re: resend: multiple routing table roadmap (format fix) Message-ID: <20080106112033.GA40991@expo.ukrweb.net> In-Reply-To: <477D2EF3.2060909@elischer.org> References: <4772F123.5030303@elischer.org> <f85d6aa70712261728h331eadb8p205d350dc7fb7f4c@mail.gmail.com> <477416CC.4090906@elischer.org> <opt4c0imk24fjv08@nuclight.avtf.net> <477D2EF3.2060909@elischer.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Julian Elischer wrote: > > setfib 3 /bin/sh > > now by default everythign you do uses table 3. > or even > > setfib 3 jail {blah} > > and all the procs in the jail use table 3. You also need to do > setfib 3 jexec xxx > for extra processes you add to the jail afterwards. Is it possible to deny setfib after setfib N /bin/sh ? Or call setfib from jail? If yes this can be usable for restriction jail on some different fib -- Mykola Dzham, LEFT-(UANIC|RIPE) JID: levsha@jabber.net.ua
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080106112033.GA40991>