Jan-Frode Myklebust wrote: > We run policyd v1.81 as user/group policyd, chroot to an empty > directory /var/empty/policyd/. But then policyd isn't able to > resolve my MYSQLHOST hostname. If I use ip-address it works fine. > > It complains: > > policyd: connecting to mysql database: > policyd: mysql_real_connect(): Unknown MySQL server host > 'mysqldserver.mydomain.net' (3) > > It seems it requires access to nscd's socket /var/run/nscd/socket, > so if I bind mount this to /var/empty/policyd/var/run/nscd/socket, > everything works fine. > > mount -o bind /var/run/nscd /var/empty/policyd/var/run/nscd > > Any ideas for how to avoid this ? > > I've tried putting a hosts file, resolv.conf and nsswitch into the chroot/etc, > setting up a more complete chroot with dev/null, dev/random, to no avail..
The resolution could take place before the chroot() occurs. Nigel? ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ policyd-users mailing list policyd-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/policyd-users
