HEADS UP: multi-IPv4/v6/no-IP jails now in 7-STABLE
Miroslav Lachman
000.fbsd at quip.cz
Wed Feb 11 03:22:18 PST 2009
I have a question about INADDR_ANY in relation to new multi-IP jails.
It was discussed some time ago as PR 84215 [wildcard ip (INADDR_ANY)
should not bind inside a jail]
http://www.freebsd.org/cgi/query-pr.cgi?pr=84215 and it seemed fixed,
but manpage for jail is still saying:
"Similarly, it might be a good idea to add an address alias flag such
that daemons listening on all IPs (INADDR_ANY) will not bind on that
address, which would facilitate building a safe host environment such
that host daemons do not impose on services offered from within jails."
Can you please clarify the current state?
Miroslav Lachman
More information about the freebsd-jail
mailing list