From owner-freebsd-stable@FreeBSD.ORG Wed Dec 23 14:40:31 2009 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0D75B10656AB for ; Wed, 23 Dec 2009 14:40:31 +0000 (UTC) (envelope-from petros.fraser@gmail.com) Received: from mail-vw0-f173.google.com (mail-vw0-f173.google.com [209.85.212.173]) by mx1.freebsd.org (Postfix) with ESMTP id B58E38FC20 for ; Wed, 23 Dec 2009 14:40:30 +0000 (UTC) Received: by vws3 with SMTP id 3so2354004vws.3 for ; Wed, 23 Dec 2009 06:40:29 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type :content-transfer-encoding; bh=3hTdV/BRlwcy3Q9qDRlwf/FCvjKoLG5ceseb0oyYyBQ=; b=IeGn9mfGBLJQwmjUp9c6416vdY4JH/gTW2tsQXfXQkL1oNV0KdfL1H45g1mXdEMKVK YxXKTJIBXsBDWlgy0KRtInIc2+y0PMGL7WGScv2tK1heqRuvMduFBCamgXDL5Sciz/9s +SzHrJ5BosfsMiPSTgZJV3SKVAeMb1Tc7JBoE= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=meIpKnKXTICnqpU7cpaVO0n79jzdErxVY5OCvr2cf3EuL5WRA+S1Tf+Qtk3bZ9+ga3 2OSu4jHcqeY69RcLN4O5U6QyT42KxVaiGA9hyIS4bYm72TkML97Z5r3hQYWM6CYsj79U ew5nj65x7YGYvlBvrA9BI5ZZn29caLl9HwYOw= MIME-Version: 1.0 Received: by 10.220.124.96 with SMTP id t32mr10763407vcr.110.1261579229784; Wed, 23 Dec 2009 06:40:29 -0800 (PST) In-Reply-To: <4ad871310912221815r35542487i8a67ed2f9154a72f@mail.gmail.com> References: <4ad871310912221815r35542487i8a67ed2f9154a72f@mail.gmail.com> Date: Wed, 23 Dec 2009 09:40:29 -0500 Message-ID: From: Peter Fraser To: freebsd-stable@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Subject: Re: Create socket files X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Dec 2009 14:40:31 -0000 Hi All The problem did seem to be that the service was not running as root as Adam suggested. I had this in rc.conf below. I'm assuming the second line runs the service as user daemon!? ....when I removed it, the service started. Thanks for the help. syslog_ng_enable=3D"YES" syslog_ng_config=3D"-u daemon" syslog_ng_pid=3D"/var/run/syslog-ng.pid" On Tue, Dec 22, 2009 at 9:15 PM, Glen Barber wrot= e: > Hi Peter > > On Tue, Dec 22, 2009 at 8:34 PM, Peter Fraser w= rote: >> Hi All >> I wonder if anyone could help me with this problem. I followed the >> instructions in the handbook to create some jails. It makes part of >> the filesystem readonly which is good. > > This sounds like you used the "service jail" approach [1]. Correct me > if I am wrong. > >> Problem is though that I tried >> installing syslog-ng in one of the jails and when I tried to start it, >> I got this error >> >>> Error binding socket; addr=3D'AF_UNIX(/var/run/log)', error=3D'Permissi= on >>> denied (13)' >>> Error initializing source driver; source=3D'src', id=3D'src#0' >>> Error initializing message pipeline; >>> /usr/local/etc/rc.d/syslog-ng: WARNING: failed to start syslog_ng >> >> I think it's trying to create the socket files =A0/var/run/log and >> /var/run/logpriv but can't. Is there anyway for me to create them >> manually? > > It has been some time since I used that method to create jails; the > areas that have burned me in particular were symlinking > /usr/local/bin/perl to /usr/bin/perl and similarly for the > security/ca_root_nss port. > > Re-reading the doc, /var should be made read/write as it is part of > the jail "skeleton" filesystem, from which you create the "moving > parts" of your jail, so to speak. =A0Did you create /var read-only? > > Regards, > > > [1] - http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/jails-app= lication.html > > -- > Glen Barber >