From owner-freebsd-hackers@FreeBSD.ORG  Sun Aug 27 03:34:27 2006
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
X-Original-To: hackers@freebsd.org
Delivered-To: freebsd-hackers@FreeBSD.ORG
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id D0B1A16A4DE
	for <hackers@freebsd.org>; Sun, 27 Aug 2006 03:34:27 +0000 (UTC)
	(envelope-from erdgeist@erdgeist.org)
Received: from elektropost.org (elektropost.org [80.237.196.4])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 1196643D49
	for <hackers@freebsd.org>; Sun, 27 Aug 2006 03:34:26 +0000 (GMT)
	(envelope-from erdgeist@erdgeist.org)
Received: (qmail 25153 invoked by uid 0); 27 Aug 2006 03:35:22 -0000
Received: from erdgeist.org (erdgeist@erdgeist.org@80.237.196.15)
	by elektropost.org with AES256-SHA encrypted SMTP;
	27 Aug 2006 03:35:22 -0000
Date: Sun, 27 Aug 2006 05:35:22 +0200 (CEST)
From: Dirk Engling <erdgeist@erdgeist.org>
To: Mike Meyer <mwm-keyword-freebsdhackers2.e313df@mired.org>
In-Reply-To: <17648.59470.572563.377998@bhuda.mired.org>
Message-ID: <20060827052733.F16322@erdgeist.org>
References: <44F0E38F.5030809@erdgeist.org>
	<17648.59470.572563.377998@bhuda.mired.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
Cc: hackers@freebsd.org
Subject: Re: jails, cron and sendmail
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 27 Aug 2006 03:34:27 -0000


On Sat, 26 Aug 2006, Mike Meyer wrote:

> Except some of the things run from cron want to send mail all on their
> own, so fixing cron won't solve your problem.
>
> Why are you running cron inside the jails at all? Are you letting your
> users run it? If not, can you disable it, and instead run scripts from
> your real crontab that do the appropriate thigns in each jail?

It's not me, it's the OS running cron to do its periodic checks, per 
default. But Daniel Gerzo already pointed out, how to solve that.

Still: FreeBSD's /etc/ assumes and provides a working mail subsystem in 
its default configuration. That exposes sendmail to the publicly visible 
IP address. Shutting the mail sub system off causes trouble.

I hope, that describes my motivation to bring up the topic.

   erdgeist