Date: Thu, 27 May 2010 21:31:41 -0400 From: jhell <jhell@dataix.net> To: Glen Barber <glen.j.barber@gmail.com> Cc: jail@freebsd.org Subject: Re: jail(8) allow.socket_af, unknown oid Message-ID: <4BFF1CFD.1010108@dataix.net> In-Reply-To: <20100525175412.GA75052@orion.glenbarber.us> References: <20100525175412.GA75052@orion.glenbarber.us>
next in thread | previous in thread | raw e-mail | index | archive | help
On 05/25/2010 13:54, Glen Barber wrote: > Hi, > > The jail(8) man page has an entry under 'allow.*', allow.socket_af, which > states to allow access to protocol stacks that have not had jail functionality > added to them. > > However, though socket_af exists in sys/kern/kern_jail.c, the sysctl itself > does not exist on my system: > > orion# sysctl -a | grep socket > kern.ipc.maxsockets: 25600 > kern.ipc.numopensockets: 35 > security.jail.allow_raw_sockets: 0 > security.jail.socket_unixiproute_only: 1 > > Is this sysctl missing, or is it not a tunable? > > Regards, > sysctl -A security.jail.param.allow Please see -A option to sysctl(1) Although doing anything with the output from that probably will not help you much. -- jhell
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4BFF1CFD.1010108>