[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [ezjail] syctl resetting on jail restart



On 2/6/07, Matt Olander <matt AT ixsystems DOT com> wrote:
Hey jailers!

When I /usr/local/etc/rc.d/ezjail.sh restart jailname, I resets
security.jail.sysvipc_allowed to 0.

Is there a way to have it restart the jail with that sysctl enabled?

Hi Matt,

Yup! Put the sysctl lines you want in the /etc/sysctl.conf file:

------------- bof -------------
# $FreeBSD: src/etc/sysctl.conf,v 1.8 2003/03/13 18:43:50 mux Exp $
#
#  This file is read when going to multi-user and its contents piped thru
#  ``sysctl'' to adjust kernel values.  ``man 5 sysctl.conf'' for details.
#
# Uncomment this to prevent users from seeing information about processes that
# are being run under another UID.
#security.bsd.see_other_uids=0

security.jail.socket_unixiproute_only=0
security.jail.allow_raw_sockets=1
------------- eof -------------

Alex