Date: Fri, 5 Mar 2004 11:19:07 -0600 From: Tillman Hodgson <tillman@seekingfire.com> To: current@freebsd.org Subject: Re: HEADS UP: rcNG scripts inside a jail. Message-ID: <20040305171907.GT15679@seekingfire.com> In-Reply-To: <Pine.NEB.3.96L.1040305111125.68046C-100000@fledge.watson.org> References: <20040305102543.GJ10864@darkness.comp.waw.pl> <Pine.NEB.3.96L.1040305111125.68046C-100000@fledge.watson.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Mar 05, 2004 at 11:35:48AM -0500, Robert Watson wrote: > On Fri, 5 Mar 2004, Pawel Jakub Dawidek wrote: > > And here is the list of scripts that I've no idea if they should be > > available inside a jail or not: > > > > bootparams > > kdc > > kerberos > > keyserv > > kpasswdd <snip> > > I've never tried running Kerberos in a jail, but assuming it didn't mind > the IP address munging, I see no reason not to allow it. In fact, you > might argue that that could be a desirable configuration. I agree. In fact, it's my preferred way to run KDC if I'm serving more than one realm (thus more than one KDC) on the same machine. > rpcbind probably is useful since there's no reason we couldn't run > userspace RPC applications in a jail. Such as when one is using NIS in conjunction with Kerberos for jailed services :-) -T -- "A man who carries a cat by the tail learns something he can learn in no other way." - Mark Twain
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040305171907.GT15679>