Hello!

On Sun, Jun 17, 2018 at 01:36:25AM +0200, Alexander Morozov wrote:

> Hello.
>
> I was doing experiments with the sandboxing in FreeBSD and I executed
> nginx sandboxed (in sandbox for FreeBSD) and I noticed that sandbox
> blocked 2 outbound datagrams from nginx (uid:root) process.
>
> Jun 17 00:26:02 ** sandboxd[49377]: action: deny for pid[30392]nginx
> uid:0 procedure: network-outbound[90] network outbound remote
> udp/ip4:65.158.94.185:1
> Jun 17 00:26:02 ** sandboxd[49377]: action: deny for pid[30392]nginx
> uid:0 procedure: network-outbound[90] network outbound remote
> udp/ip4:65.158.94.168:1
> Jun 17 01:17:03 ** sandboxd[49377]: action: deny for pid[61454]nginx
> uid:0 procedure: network-outbound[90] network outbound remote
> udp/ip4:205.197.140.171:1
> Jun 17 01:17:03 ** sandboxd[49377]: action: deny for pid[61454]nginx
> uid:0 procedure: network-outbound[90] network outbound remote
> udp/ip4:205.197.140.178:1
> Jun 17 01:24:11 ** sandboxd[49377]: action: deny for pid[11326]nginx
> uid:0 procedure: network-outbound[90] network outbound remote
> udp/ip4:80.239.148.73:1
> Jun 17 01:24:11 ** sandboxd[49377]: action: deny for pid[11326]nginx
> uid:0 procedure: network-outbound[90] network outbound remote
> udp/ip4:80.239.148.95:1
>
> I can not find any information about this addresses except from whois.
> For which purpose outgoing UDP/1 is used?

It is not used by nginx unless you've explicitly configured it to
do so.

--
Maxim Dounin
http://mdounin.ru/
_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx