From owner-freebsd-jail@FreeBSD.ORG Fri Jun 4 07:15:20 2010 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 98FAD106566C for ; Fri, 4 Jun 2010 07:15:20 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from mail.ebusiness-leidinger.de (mail.ebusiness-leidinger.de [217.11.53.44]) by mx1.freebsd.org (Postfix) with ESMTP id 41D338FC14 for ; Fri, 4 Jun 2010 07:15:20 +0000 (UTC) Received: from outgoing.leidinger.net (pD9E2F940.dip.t-dialin.net [217.226.249.64]) by mail.ebusiness-leidinger.de (Postfix) with ESMTPSA id D292984405B; Fri, 4 Jun 2010 09:15:14 +0200 (CEST) Received: from webmail.leidinger.net (webmail.leidinger.net [192.168.1.102]) by outgoing.leidinger.net (Postfix) with ESMTP id 035905173; Fri, 4 Jun 2010 09:15:11 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=Leidinger.net; s=outgoing-alex; t=1275635712; bh=Anngvi2m9SsnfaOBB6vXmowMwjndkb5M+2vQIitg/Bw=; h=Message-ID:Date:From:To:Cc:Subject:References:In-Reply-To: MIME-Version:Content-Type:Content-Transfer-Encoding; b=R8oIpHAjuWk82vmHdI+Ylpw0TJHtZREFo75XNO4066jGua4a7Ontm3rgQ2Or+KG4R qXwANOygD//S8cfqpfCOfk2so5r+rqLULOBhBMhWw2Z0DM9/TD3CXfdPGlqhuArXof 8Ru/ThDmTnOJCw9Eguwcptnaw2mw4/aSdASVMlNxbxw4rV3t/HiYErv/T6Phk+H7RI i87HvqGHLNOcV2WEgisCOGTecHUs1UFSYgRb/4D98fngY+EQAUd/6js5SsiEeLKKN+ xqaL5HQ0Tu7cND/k1iDvPJqawfImMoboLYhjLMa106l93wo/VSs2GPNPi/ChoKOA4d zIeueCcMPlD6Q== Received: (from www@localhost) by webmail.leidinger.net (8.14.4/8.13.8/Submit) id o547FB4f068344; Fri, 4 Jun 2010 09:15:11 +0200 (CEST) (envelope-from Alexander@Leidinger.net) Received: from pslux.ec.europa.eu (pslux.ec.europa.eu [158.169.9.14]) by webmail.leidinger.net (Horde Framework) with HTTP; Fri, 04 Jun 2010 09:15:11 +0200 Message-ID: <20100604091511.123441fooipqt0ys@webmail.leidinger.net> Date: Fri, 04 Jun 2010 09:15:11 +0200 From: Alexander Leidinger To: Andrew Hotlab References: In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; DelSp="Yes"; format="flowed" Content-Disposition: inline Content-Transfer-Encoding: 7bit User-Agent: Dynamic Internet Messaging Program (DIMP) H3 (1.1.4) X-EBL-MailScanner-Information: Please contact the ISP for more information X-EBL-MailScanner-ID: D292984405B.A6907 X-EBL-MailScanner: Found to be clean X-EBL-MailScanner-SpamCheck: not spam, spamhaus-ZEN, SpamAssassin (not cached, score=-0.821, required 6, autolearn=disabled, ALL_TRUSTED -1.00, DKIM_SIGNED 0.10, DKIM_VALID -0.10, DKIM_VALID_AU -0.10, PLING_QUERY 0.28) X-EBL-MailScanner-From: alexander@leidinger.net X-EBL-MailScanner-Watermark: 1276240518.36685@+n0hcwE+UPE++Gi0eNAjoQ X-EBL-Spam-Status: No Cc: freebsd-jail@freebsd.org, samankaya@netscape.net Subject: RE: Strange things happening with jails?? Not starting up on boot or services not running inside! X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 04 Jun 2010 07:15:20 -0000 Quoting Andrew Hotlab (from Thu, 3 Jun 2010 22:04:44 +0000): > I've never had to make Squid listening on port 80, but referring its > startup script in /usr/local/etc/rc.d/: > > # squid_user: The user id that should be used to run the Squid master > # process. Default: squid. > # Note that you probably need to define "squid_user=root" if > # you want to run Squid in reverse proxy setups or if you want > # Squid to listen on a "privileged" port < 1024. > > So you only need to write the following line in /etc/rc.conf to have > Squid listening on this privileged port: > squid_user="root" An alternative is to change the sysctl net.inet.ip.portrange.reservedhigh. By lowering it, other users than root are allowed to bind to ports <1023 (the system prevents non-root binds to the port X in the range reservedlow <= X <= reservedhigh). Bye, Alexander. -- The District of Columbia has a law forbidding you to exert pressure on a balloon and thereby cause a whistling sound on the streets. http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID = B0063FE7 http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID = 72077137