Current version
Git/Latestdiff: 1.5.6
Latest Snapshots
Produced after each commit or rebase to new upstream version
GIT
RSBAC source code, can be unstable sometimes
No events planned
This shows you the differences between two versions of the page.
Next revision | Previous revision Last revision Both sides next revision | ||
wiki:experiences:igraltist:jail_pdnsd [2008/07/14 03:47] 127.0.0.1 (old revision restored) |
wiki:experiences:igraltist:jail_pdnsd [2008/07/14 04:37] 127.0.0.1 (old revision restored) |
||
---|---|---|---|
Line 13: | Line 13: | ||
allow-dev-write | allow-dev-write | ||
allow-inet-raw | allow-inet-raw | ||
- | allow-ipc-syslog) | + | allow-ipc-syslog |
+ | allow-ipc-parent) | ||
(setgid | (setgid | ||
setuid | setuid | ||
Line 26: | Line 27: | ||
<code bash> | <code bash> | ||
This is execute now: | This is execute now: | ||
- | rsbac_jail -d -D -r -y -C SETGID SETUID NET_BIND_SERVICE NET_RAW SYS_PTRACE SYS_RESOURCE -G sysctl -M rlimit priority start-stop-daemon --start --quiet --exec /usr/sbin/pdnsd -- -t -s -d -p /var/run/pdnsd.pid | + | rsbac_jail -d -D -r -y -P -C SETGID SETUID NET_BIND_SERVICE NET_RAW SYS_PTRACE SYS_RESOURCE -G sysctl -M rlimit priority start-stop-daemon --start --quiet --exec /usr/sbin/pdnsd -- -t -s -d -p /var/run/pdnsd.pid |
</code> | </code> |