My customer is doing this by granting the privilege sys_net_config to
the local zone.
I know and he knows that this is not permitted and supported. He does
this at his own risk.
No problem so far.
James Carlson wrote On 12/18/06 16:34,:
Jeff Victor writes:
Detlef Drewanz wrote:
I know dhcp-server and bootp-server were not possible to run in local
zones. So now with S10 11/06 we can configure some more privileges into
a zone. E.g. if I add the privilege net_raw_access to a zone, can I then
run dhcp-server or dhcp-server in a local zone (because I should now be
able to listen for broadcasts) ?
Funny, I was wondering about that, and decided to attempt to resolve this
today. If anyone has an answer, I'd like to hear it. But I'll be working on
in.dhcpd does SIOCSXARP to hotwire the ARP entry, which means at least
sys_net_config is required. sys_net_config is on the list of
privileges that cannot be added to a zone:
% grep sys_net_config /usr/lib/brand/native/config.xml
<privilege set="prohibited" name="sys_net_config" />
It seems unlikely that this will work.
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html; ">
<META NAME="GENERATOR" CONTENT="StarOffice 6.0 (Win32)">
<META NAME="CREATED" CONTENT="20050921;15041060">
<META NAME="CHANGED" CONTENT="20050921;15155613">
<P STYLE="margin-bottom: 0cm"><BR>
<TABLE WIDTH=450 BORDER=0 CELLPADDING=0 CELLSPACING=0>
<TD WIDTH=121 HEIGHT=121>
SRC="http://www.sun.com/emrkt/sigs/6g_top.gif" NAME="Image1" ALIGN=BOTTOM WIDTH=121 HEIGHT=116
<P><FONT SIZE=1><FONT FACE="Arial"><B>Pascal FORTIN
Account Manger<BR><BR><B>Sun Microsystems
Morane Saulnier <BR>78140 Velizy
/ +33 1 34 03 04 01<BR>Mobile +33 6 85 83 10 01<BR>Email
<A HREF="mailto:[EMAIL PROTECTED]">[EMAIL
zones-discuss mailing list