From owner-freebsd-hackers@FreeBSD.ORG Wed Apr 16 06:49:23 2003 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8B7A537B401 for ; Wed, 16 Apr 2003 06:49:23 -0700 (PDT) Received: from lurza.secnetix.de (lurza.secnetix.de [212.66.1.130]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8739143F93 for ; Wed, 16 Apr 2003 06:49:22 -0700 (PDT) (envelope-from olli@lurza.secnetix.de) Received: from lurza.secnetix.de (gzuvql@localhost [127.0.0.1]) by lurza.secnetix.de (8.12.8p1/8.12.8) with ESMTP id h3GDnKB5008395 for ; Wed, 16 Apr 2003 15:49:20 +0200 (CEST) (envelope-from oliver.fromme@secnetix.de) Received: (from olli@localhost) by lurza.secnetix.de (8.12.8p1/8.12.8/Submit) id h3GDnKxl008394; Wed, 16 Apr 2003 15:49:20 +0200 (CEST) Date: Wed, 16 Apr 2003 15:49:20 +0200 (CEST) Message-Id: <200304161349.h3GDnKxl008394@lurza.secnetix.de> From: Oliver Fromme To: freebsd-hackers@FreeBSD.ORG In-Reply-To: <20030416120259.GB92137@garage.freebsd.pl> X-Newsgroups: list.freebsd-hackers User-Agent: tin/1.5.4-20000523 ("1959") (UNIX) (FreeBSD/4.8-RELEASE (i386)) MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit Subject: Re: Multiple ip-numbers in jails (fixed INADDR_ANY behaviour). X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: freebsd-hackers@FreeBSD.ORG List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Apr 2003 13:49:23 -0000 Pawel Jakub Dawidek wrote: > On Wed, Apr 16, 2003 at 12:25:11PM +0100, Jan Grant wrote: > +> Hang on, so you're saying that if my machine has (say) 4 IP addresses, > +> and the jail has two of them, and I've a process listening on INADDR_ANY > +> in a non-jail, and one listening on INADDR_ANY in a jail, That shouldn't be possible at all. You cannot have multiple processes listen on the same address and port, no matter whether they're in a jail or not. If this patch for multiple IP numbers in jails breaks that behaviour, then it does not fix INADDR_ANY behaviour, despite what the subject says. :-) > # /usr/sbin/sshd -p 666 > # jail / temp /usr/sbin/sshd -p 666 That last command _must_ fail with errno EADDRINUSE. Regards Oliver -- Oliver Fromme, secnetix GmbH & Co KG, Oettingenstr. 2, 80538 München Any opinions expressed in this message may be personal to the author and may not necessarily reflect the opinions of secnetix in any way. "If you do things right, people won't be sure you've done anything at all." -- God in Futurama season 4 episode 8