Date: Thu, 27 Mar 2008 20:29:45 +0100 From: Kurt Jaeger <lists@c0mplx.org> To: freebsd-stable@freebsd.org Subject: Re: inetd and freebsd service jail Message-ID: <20080327192945.GA57996@home.opsec.eu> In-Reply-To: <BLU118-W91CABC84FB9304A5C2308D0FE0@phx.gbl> References: <BLU118-W91CABC84FB9304A5C2308D0FE0@phx.gbl>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi! > I have a jail for pureftpd service, > it is possible that inetd from the main system launch FTP server > inside the jail? No, it's not possible. The reason: When your client connects to the IP of the jail, inetd.conf running on the main system can start some jexec <jail-id> /usr/libexec/ftpd ... But: The <jail-id> depends on the IP the client is connecting to, and inetd has no lookup-hook to find the <jail-id> from the IP adress. It might not be too difficult to add this feature to inetd, but right now, it's not available. > If not so, i don't uderstand advantage of to have an inetd service > listening inside each jail... Jails are to virtualize systems, so if you have your own instance of inetd running in your jail, you can decide for yourself which services will served by your inetd instance. Just edit the inetd.conf inside the jail and restart inetd in your own virtual server. -- pi@opsec.eu +49 171 3101372 12 years to go !
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080327192945.GA57996>