> Am 20.08.2018 um 16:59 schrieb Bjoern A. Zeeb
> :
>
> On 20 Aug 2018, at 14:47, Stefan Bethke wrote:
>
>> I have a Go program (acme-dns) that wants to bind 53, 80, and 443, and I’d
>> rather have it run as a non-privileged user. The program doesn’t provide a
>> facility to drop privs
On 20 Aug 2018, at 16:22, Stefan Bethke wrote:
Is there a way to allow regular processes to bind to low ports?
you have to set it on the base system; alternatively with vnet you
might be able to change it per-jail.
Do you feel it’s OK to enable VIMAGE in -stable? When I tried last
in
> On Aug 20, 2018, at 11:04 AM, Ian Lepore wrote:
>
> On Mon, 2018-08-20 at 16:47 +0200, Stefan Bethke wrote:
>> I have a Go program (acme-dns) that wants to bind 53, 80, and 443,
>> and I´d rather have it run as a non-privileged user. The program
>> doesn´t provide a facility to drop privs
20.08.2018 21:47, Stefan Bethke wrote:
> I have a Go program (acme-dns) that wants to bind 53, 80, and 443, and I’d
> rather have it run as a non-privileged user. The program doesn’t provide a
> facility to drop privs after binding the ports. I’m planning to run it in a
> jail.
>
> After
20.08.2018 22:02, Stefan Bethke wrote:
>> The trick is that mac_portacl provides a way to selectively give permission
>> for non-root UID
>> to bind low ports:
>>
>> security.mac.portacl.rules=uid:88:tcp:80,uid:88:tcp:443,uid:53:tcp:53,uid:53:udp:53
>>
>> It works just fine for a host and I use
On Mon, 2018-08-20 at 17:02 +0200, Stefan Bethke wrote:
> Am 20.08.2018 um 16:59 schrieb Eugene Grosbein :
> >
> >
> > 20.08.2018 21:47, Stefan Bethke wrote:
> >
> > >
> > > I have a Go program (acme-dns) that wants to bind 53, 80, and
> > > 443, and I’d rather have it run as a non-privileged
I was trying to create a single partition on a 16G mSata drive and
whenever I add a partition, all of a sudden the secondary GPT partion is
borked. Any idea whats going on here ?
0# gpart destroy -F ada0
ada0 destroyed
0# gpart create -s GPT ada0
ada0 created
0# gpart add -t freebsd-ufs ada0
___
freebsd-stable@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-stable
To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
> Am 20.08.2018 um 18:32 schrieb Bjoern A. Zeeb
> :
>
> On 20 Aug 2018, at 16:22, Stefan Bethke wrote:
>
Is there a way to allow regular processes to bind to low ports?
>>>
>>> you have to set it on the base system; alternatively with vnet you might
>>> be able to change it per-jail.
20.08.2018 23:22, Stefan Bethke wrote:
> Do you feel it’s OK to enable VIMAGE in -stable? When I tried last in 2016, I
> had stability issues, I think related to pf.
It is already in HEAD's GENERIC and will be in 12.0-RELEASE soon, so in -stable
too.
I use it with stable/11 without problems
Will Andrews wrote on 2018/08/20 15:33:
On Sun, Aug 19, 2018 at 9:30 AM, John-Mark Gurney wrote:
Miroslav Lachman wrote this message on Sun, Aug 19, 2018 at 02:29 +0200:
I upgraded one of our servers from 10.4 to 11.2 and scripts using output
of "iostat -x" are not working anymore.
A checked
21.08.2018 2:15, Mike Tancsa wrote:
> I was trying to create a single partition on a 16G mSata drive and
> whenever I add a partition, all of a sudden the secondary GPT partion is
> borked. Any idea whats going on here ?
>
>
>
> 0# gpart destroy -F ada0
> ada0 destroyed
> 0# gpart create -s
21.08.2018 1:37, Charles Sprickman via freebsd-stable wrote:
> I am so behind on all the new toys in the system. I was very embarrassed
> to find out about this feature from someone who’s primarily working
> with Linux in his day job. He was just looking to bind an Elixir app to
> 80/443
>
I have a Go program (acme-dns) that wants to bind 53, 80, and 443, and I’d
rather have it run as a non-privileged user. The program doesn’t provide a
facility to drop privs after binding the ports. I’m planning to run it in a
jail.
After some googling, it appears that a couple of years ago I
On 20 Aug 2018, at 14:47, Stefan Bethke wrote:
I have a Go program (acme-dns) that wants to bind 53, 80, and 443, and
I’d rather have it run as a non-privileged user. The program
doesn’t provide a facility to drop privs after binding the ports.
I’m planning to run it in a jail.
After some
Am 20.08.2018 um 16:59 schrieb Eugene Grosbein :
>
> 20.08.2018 21:47, Stefan Bethke wrote:
>
>> I have a Go program (acme-dns) that wants to bind 53, 80, and 443, and I’d
>> rather have it run as a non-privileged user. The program doesn’t provide a
>> facility to drop privs after binding the
On Mon, 2018-08-20 at 16:47 +0200, Stefan Bethke wrote:
> I have a Go program (acme-dns) that wants to bind 53, 80, and 443,
> and I’d rather have it run as a non-privileged user. The program
> doesn’t provide a facility to drop privs after binding the ports. I’m
> planning to run it in a jail.
>
On Sun, Aug 19, 2018 at 9:30 AM, John-Mark Gurney wrote:
> Miroslav Lachman wrote this message on Sun, Aug 19, 2018 at 02:29 +0200:
> > I upgraded one of our servers from 10.4 to 11.2 and scripts using output
> > of "iostat -x" are not working anymore.
> > A checked the output of iostat and it
Hi,
Greeting of the day!
Would you be interested in acquiring an email list of "Truck Owners" from USA?
We also have data for Cruise Travelers, Boat Owners, Travelers List, RV Owners
List, Spa and Resorts List, Scuba Divers List, Fishing Enthusiasts List,
Apparel Buyers, Luxury Brand
On 8/3/18, Bjoern A. Zeeb wrote:
> On 3 Aug 2018, at 20:42, Oliver Pinter wrote:
>
>> On 8/3/18, Bjoern A. Zeeb wrote:
>>> On 3 Aug 2018, at 18:48, Oliver Pinter wrote:
>>>
Hi all!
One of out users observed an VNET related kernel panic with epairs
in
a jail. Seems like
20 matches
Mail list logo