From owner-freebsd-stable@FreeBSD.ORG Wed Dec 23 02:51:49 2009 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9EF0D1065670 for ; Wed, 23 Dec 2009 02:51:49 +0000 (UTC) (envelope-from brucegb@austin.rr.com) Received: from hrndva-omtalb.mail.rr.com (hrndva-omtalb.mail.rr.com [71.74.56.124]) by mx1.freebsd.org (Postfix) with ESMTP id 580E88FC08 for ; Wed, 23 Dec 2009 02:51:49 +0000 (UTC) Received: from hrndva-omtalb.mail.rr.com ([10.128.143.53]) by hrndva-qmta04.mail.rr.com with ESMTP id <20091223024233365.PKFE22884@hrndva-qmta04.mail.rr.com> for ; Wed, 23 Dec 2009 02:42:33 +0000 X-Authority-Analysis: v=1.0 c=1 a=PotHfjkHnYzV1llMyAwA:9 a=qvmUlZADcHs9K6GtuvcA:7 a=RGzqqROXBSCbomcsZtXy7cRQRQ0A:4 X-Cloudmark-Score: 0 X-Originating-IP: 70.112.143.30 Received: from [70.112.143.30] ([70.112.143.30:59189] helo=tigerfish2.my.domain) by hrndva-oedge03.mail.rr.com (envelope-from ) (ecelerity 2.2.2.39 r()) with ESMTP id 26/41-16130-B53813B4; Wed, 23 Dec 2009 02:41:31 +0000 Received: from tigerfish2.my.domain (localhost [127.0.0.1]) by tigerfish2.my.domain (8.14.3/8.14.3) with ESMTP id nBN2fUwM080358 for ; Tue, 22 Dec 2009 20:41:30 -0600 (CST) (envelope-from brucegb@tigerfish2.my.domain) Received: (from brucegb@localhost) by tigerfish2.my.domain (8.14.3/8.14.3/Submit) id nBN2fU7e080357 for freebsd-stable@freebsd.org; Tue, 22 Dec 2009 20:41:30 -0600 (CST) (envelope-from brucegb) Date: Tue, 22 Dec 2009 20:41:30 -0600 From: Bruce Burden To: freebsd-stable@freebsd.org Message-ID: <20091223024130.GJ94964@tigerfish2.my.domain> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4.2.3i Subject: Re: Create socket files X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Dec 2009 02:51:49 -0000 On Tue, Dec 22, 2009 at 08:34:09PM -0500, Peter Fraser wrote: > > instructions in the handbook to create some jails. It makes part of > the filesystem readonly which is good. Problem is though that I tried > installing syslog-ng in one of the jails and when I tried to start it, > I got this error > > > Error binding socket; addr='AF_UNIX(/var/run/log)', error='Permission > > denied (13)' > error 13 is EACCES, "The requested address is protected, and the currect user has inadequate permission to access it." Since you have created a read-only file system, I'd say the socket is attempting to bind to a read-write (full-duplex) socket, given the "log" in the name. Just creating the socket is unlikely to be blocked by your read-only file system, since it doesn't consume an i-node until it is bound to a name, or more specifically, the system doesn't know what permissions apply until it is bound. Bruce -- ------------------------------------------------------------------------ "I like bad!" Bruce Burden Austin, TX. - Thuganlitha The Power and the Prophet Robert Don Hughes