On 08/23/13 16:34, Mike C. wrote:
> Yes I know about
>
>> security.jail.allow_raw_sockets=1
>
> Like I said I can do this with "root" just not with the user nagios, I guess
> If raw_sockets was set to 0 on the host, I would have problems with any user!
>
>
>
> ----
> Putting this in /etc/rc.conf:
>
> jail_${JailName}_parameters="allow.raw_sockets=1"
>
> does not allow every jail access to raw sockets. There is an example in
> /etc/defaults/rc.conf.
>
>
[EDIT: better englih... sorry typing on smartphones sucks]
Now this is something I wasn't aware of... very nice and thanks for the
tip on ez-jails, I'm indeed using ez-jails!
Is there any other setting that would forbid non root users to use raw
sockets?
Thanks
_______________________________________________
freebsd-jail@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-jail
To unsubscribe, send any mail to "freebsd-jail-unsubscr...@freebsd.org"
