From owner-freebsd-security@FreeBSD.ORG Tue Mar 7 19:09:15 2006 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6229316A420 for ; Tue, 7 Mar 2006 19:09:15 +0000 (GMT) (envelope-from josh@oplink.net) Received: from filter.oplink.net (filter.oplink.net [66.100.35.2]) by mx1.FreeBSD.org (Postfix) with SMTP id C84C743D53 for ; Tue, 7 Mar 2006 19:08:09 +0000 (GMT) (envelope-from josh@oplink.net) Received: (qmail 26754 invoked from network); 7 Mar 2006 19:07:53 -0000 Received: by simscan 1.2.0 ppid: 26751, pid: 26752, t: 0.1607s scanners: spam: 3.1.0 X-Spam-Checker-Version: filter.oplink.net Anti-spam/Virii scanner X-Spam-Level: X-Spam-Status: No, score=0.0 required=5.0 tests=none autolearn=failed Received: from devious.oplink.net (HELO ?10.10.10.2?) (209.176.49.142) by filter.oplink.net with SMTP; 7 Mar 2006 19:07:53 -0000 Message-ID: <440DDA16.2050109@oplink.net> Date: Tue, 07 Mar 2006 13:08:06 -0600 From: Josh Bell User-Agent: Mozilla Thunderbird 1.0.7 (Windows/20050923) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Cyril Jaouich References: <20060307150703.75574.qmail@web30609.mail.mud.yahoo.com> In-Reply-To: <20060307150703.75574.qmail@web30609.mail.mud.yahoo.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Cc: freebsd-security@freebsd.org Subject: Re: Jails and loopback interfaces X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 07 Mar 2006 19:09:15 -0000 For what its worth. It seems like it would be a better idea to use the file socket instead of connecting to an IP. You could then mount the socket within the jail, if I am not mistaken. ---- Joshua Bell - Cyril Jaouich wrote: > Hi, > > Running: Freebsd 6.0 > > I am wondering if it is possible to have acces to loopback ip in a jail. I > currently have a server running a jail. In the jail, there is a database and a > web server. I would like to be able to have the database only bind on a > loopback address and not on the jail's ip. > > Can this be done and how? > > Thanks > > -Cyril > > > > > > > __________________________________________________________ > Lèche-vitrine ou lèche-écran ? > magasinage.yahoo.ca > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" >