inetd and freebsd service jail

[Kurt Jaeger]

Hi!

> I have a jail for pureftpd service,
> it is possible that inetd from the main system launch FTP server
> inside the jail?

No, it's not possible.

The reason:

When your client connects to the IP of the jail,
inetd.conf running on the main system can start some

jexec <jail-id> /usr/libexec/ftpd ...

But: The <jail-id> depends on the IP the client is connecting to,
and inetd has no lookup-hook to find the <jail-id> from the IP adress.

It might not be too difficult to add this feature to inetd,
but right now, it's not available.

> If not so, i don't uderstand advantage of to have an inetd service
> listening inside each jail...

Jails are to virtualize systems, so if you have your own instance
of inetd running in your jail, you can decide for yourself which
services will served by your inetd instance. Just edit the inetd.conf
inside the jail and restart inetd in your own virtual server.

-- 
pi at opsec.eu            +49 171 3101372                        12 years to go !