inetd and freebsd service jail
Kurt Jaeger
lists at c0mplx.org
Thu Mar 27 12:29:45 PDT 2008
Hi!
> I have a jail for pureftpd service,
> it is possible that inetd from the main system launch FTP server
> inside the jail?
No, it's not possible.
The reason:
When your client connects to the IP of the jail,
inetd.conf running on the main system can start some
jexec <jail-id> /usr/libexec/ftpd ...
But: The <jail-id> depends on the IP the client is connecting to,
and inetd has no lookup-hook to find the <jail-id> from the IP adress.
It might not be too difficult to add this feature to inetd,
but right now, it's not available.
> If not so, i don't uderstand advantage of to have an inetd service
> listening inside each jail...
Jails are to virtualize systems, so if you have your own instance
of inetd running in your jail, you can decide for yourself which
services will served by your inetd instance. Just edit the inetd.conf
inside the jail and restart inetd in your own virtual server.
--
pi at opsec.eu +49 171 3101372 12 years to go !
More information about the freebsd-stable
mailing list