From owner-freebsd-security@FreeBSD.ORG Thu Jul 14 15:17:57 2005 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9658116A41C for ; Thu, 14 Jul 2005 15:17:57 +0000 (GMT) (envelope-from frol@nerve.riss-telecom.ru) Received: from nerve.riss-telecom.ru (nerve.riss-telecom.ru [80.66.65.3]) by mx1.FreeBSD.org (Postfix) with ESMTP id B8DC443D48 for ; Thu, 14 Jul 2005 15:17:56 +0000 (GMT) (envelope-from frol@nerve.riss-telecom.ru) Received: from nerve.riss-telecom.ru (jok3vhsd2rcz5u9s@localhost [127.0.0.1]) by nerve.riss-telecom.ru (8.13.1/8.13.1) with ESMTP id j6EFHekB037009; Thu, 14 Jul 2005 22:17:40 +0700 (NOVST) (envelope-from frol@nerve.riss-telecom.ru) Received: (from frol@localhost) by nerve.riss-telecom.ru (8.13.1/8.13.1/Submit) id j6EFHd8i037008; Thu, 14 Jul 2005 22:17:39 +0700 (NOVST) (envelope-from frol) Date: Thu, 14 Jul 2005 22:17:39 +0700 From: Dmitry Frolov To: r2bit@neti.ee Message-ID: <20050714151739.GA35428@nerve.riss-telecom.ru> Mail-Followup-To: r2bit@neti.ee, freebsd-security@freebsd.org References: <42d50b35.2cc05bcb.3cf5.ffffa209@mx.gmail.com> <1121268472.42d532f8c6cf2@webmail.elion.ee> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <1121268472.42d532f8c6cf2@webmail.elion.ee> Organization: RISS-Telecom, JSC X-PGP-Fingerprint: 5232 98E7 596E 21C2 52B5 FCAE 8088 3F87 88BC 27B0 User-Agent: Mutt/1.5.6i Cc: freebsd-security@freebsd.org Subject: Re: mijail- Multiple IP's in a Jail X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 14 Jul 2005 15:17:57 -0000 * r2bit@neti.ee [13.07.2005 22:28]: > Check out http://blog.mombe.org/systems/mijail5.html?seemore=y. It worked for my > 5.3. But keep in mind that there's no perfect solution yet - this mentioned > patch ruins the DNS. I have a patch updated for 5.3 that also seem to fix outgoing UDP problem: ftp://ftp.riss-telecom.ru/pub/patches/fbsd53b7-mijail.diff I'm running with this patch for more than half a year. Not tried on 5.4 yet. > > > I have searched around the lists and Google and found this > > > > HYPERLINK > > "http://people.freebsd.org/~pjd/patches/jail_2004120901.patch"http://people. > > freebsd.org/~pjd/patches/jail_2004120901.patch > > > > I was wondering if anyone know of a multiple IP patch that works with > > FreeBSD 5.4 > > I really do not understand why this is not included in the standard jail > > I mean sure jail is handy for such things as small daemons > > But what about the applications such as a shell server > > Or a web server > > They require multiple IP’s and the thought of running a jail for every > shell > > account 32+ IP’s > > That is extremely far fetched. wbr&w, dmitry. -- Dmitry Frolov RISS-Telecom Network, Novosibirsk, Russia 66415911@ICQ, +7 3832 NO WA1T, DVF-RIPE