Create socket files
Adam Vande More
amvandemore at gmail.com
Wed Dec 23 02:51:59 UTC 2009
On Tue, Dec 22, 2009 at 8:15 PM, Glen Barber <glen.j.barber at gmail.com>wrote:
> Hi Peter
>
> On Tue, Dec 22, 2009 at 8:34 PM, Peter Fraser <petros.fraser at gmail.com>
> wrote:
> > Hi All
> > I wonder if anyone could help me with this problem. I followed the
> > instructions in the handbook to create some jails. It makes part of
> > the filesystem readonly which is good.
>
> This sounds like you used the "service jail" approach [1]. Correct me
> if I am wrong.
>
> > Problem is though that I tried
> > installing syslog-ng in one of the jails and when I tried to start it,
> > I got this error
> >
> >> Error binding socket; addr='AF_UNIX(/var/run/log)', error='Permission
> >> denied (13)'
> >> Error initializing source driver; source='src', id='src#0'
> >> Error initializing message pipeline;
> >> /usr/local/etc/rc.d/syslog-ng: WARNING: failed to start syslog_ng
> >
> > I think it's trying to create the socket files /var/run/log and
> > /var/run/logpriv but can't. Is there anyway for me to create them
> > manually?
>
> It has been some time since I used that method to create jails; the
> areas that have burned me in particular were symlinking
> /usr/local/bin/perl to /usr/bin/perl and similarly for the
> security/ca_root_nss port.
>
> Re-reading the doc, /var should be made read/write as it is part of
> the jail "skeleton" filesystem, from which you create the "moving
> parts" of your jail, so to speak. Did you create /var read-only?
>
> Regards,
>
>
Forgive my last post, I didn't read your original message in depth.
Do you have security.jail.allow_raw_sockets=1 set on host?
--
Adam Vande More
More information about the freebsd-stable
mailing list