Other blacklistd on host system usage for jails

Gamecreature

Member

Reaction score: 8
Messages: 31

Hi,
I have a jail based system. With on my host/core system blacklistd.
I would like to use blacklistd for the ssh daemons running on the jails.

What is the best way to do this?
It seems that blacklistd is listening to unix socket in /var/run/
Should I consider to use a nullfs mount to this socket or are there better alternatives?

Thanks!
Rick
 

Remington

Aspiring Daemon

Reaction score: 195
Messages: 562

You will run each blacklistd instances in host and jails. The only difference is that you will only need to include this in host's /etc/rc.conf:

Code:
blacklistd_enable="YES"
blacklistd_flags="-r -P /etc/blacklistd-sockets"

Create a file /etc/blacklistd-sockets to include the locations for all blacklistd sockets:

Code:
/var/run/blacklistd.sock
/jail/example/var/run/blacklistd.sock

Sometimes it will throw an error if you restart blacklistd and you will need to delete /var/run/blacklistd.sock and restart again.
 
Last edited:
OP
Gamecreature

Gamecreature

Member

Reaction score: 8
Messages: 31

Thank you very much!
This is a much cleaner solution. (Note to self RTFM)
 
Top