From owner-freebsd-rc@FreeBSD.ORG Thu Nov 23 19:42:49 2006 Return-Path: X-Original-To: freebsd-rc@freebsd.org Delivered-To: freebsd-rc@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 575FA16A510; Thu, 23 Nov 2006 19:42:49 +0000 (UTC) (envelope-from llevier@argosnet.com) Received: from mx.levier.org (ns.argosnet.com [213.251.139.26]) by mx1.FreeBSD.org (Postfix) with ESMTP id EDD3A43DDE; Thu, 23 Nov 2006 19:41:59 +0000 (GMT) (envelope-from llevier@argosnet.com) Received: from localhost (ns [213.251.139.26]) by mx.levier.org (Postfix) with ESMTP id CB37414D8F1; Thu, 23 Nov 2006 20:42:20 +0100 (CET) X-Virus-Scanned: amavisd-new at argosnet.com Received: from mx.levier.org ([213.251.139.26]) by localhost (ns.levier.org [213.251.139.26]) (amavisd-new, port 10024) with ESMTP id h-TcpNMcLSiz; Thu, 23 Nov 2006 20:42:12 +0100 (CET) Received: from osgiliath.argosnet.com (tirion.argosnet.com [82.224.1.141]) by mx.levier.org (Postfix) with ESMTP id 7221214D8F0; Thu, 23 Nov 2006 20:42:12 +0100 (CET) X-Mailer: QUALCOMM Windows Eudora Version 7.1.0.9 Date: Thu, 23 Nov 2006 20:42:40 +0100 To: Yar Tikhiy From: Laurent LEVIER In-Reply-To: <20061123121101.GF62551@comp.chem.msu.su> References: <20061013033408.GA30695@FreeBSD.csie.nctu.edu.tw> <7.0.1.0.2.20061013085800.01e91dc0@argosnet.com> <20061123121101.GF62551@comp.chem.msu.su> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Message-Id: <20061123194212.7221214D8F0@mx.levier.org> Cc: freebsd-rc@freebsd.org, bug-followup@freebsd.org Subject: Re: conf/102913: /etc/rc.d/named killall in jailed OS X-BeenThere: freebsd-rc@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion related to /etc/rc.d design and implementation." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 23 Nov 2006 19:42:49 -0000 At 13:11 23/11/2006, Yar Tikhiy wrote: >On Fri, Oct 13, 2006 at 08:59:44AM +0200, Laurent LEVIER wrote: > > > > I already patched my script. > > Now it kills pid, then if it fails, gets all named out of jail (J > > flag) and kill these. > >FWIW, I've just added a new little feature to pkill(1): now it can >selectively kill processes out of jail. Perhaps it can be useful >here. If you need to kill all nameds that are not in jail, just >use the following command: > > pkill -j none named > >BTW, for the opposite effect, now the following command should be >used: > > pkill -j any named Great. This way the patch will be included in the next release, solving the issue for all. Thanks for this great work! Brgrds Laurent LEVIER Systems & Networks Security Expert, CISSP CISM