HEADS UP: named now runs chroot'ed by default

Dan Pelleg daniel+bsd at pelleg.org
Wed Sep 29 06:26:44 PDT 2004


Doug Barton <DougB at FreeBSD.org> writes:

> On Tue, 28 Sep 2004, Peter Schultz wrote:
> 
> > Why not do it FreeBSD style and auto-jail named?
> 
> The simplest answer is that not every host can burn (or even obtain) an
> extra IP address for the jail. It's also questionable what additional
> benefit would be obtained.
> 

Benefit question aside, it's possible to run the jail on a RFC1918 address,
and run NAT on the host to make that fact transparent. A ugly hack, but it
definitely works.

-- 

  Dan Pelleg


More information about the freebsd-current mailing list