Date: Sat, 24 Feb 2007 03:21:11 +0000 From: "Jim Stapleton" <stapleton.41@gmail.com> To: freebsd-questions@freebsd.org Subject: Re: problems with jail Message-ID: <80f4f2b20702231921x603c759g9b143b24edfaa7d5@mail.gmail.com> In-Reply-To: <200702240408.40222.h.schmalzbauer@omnisec.de> References: <80f4f2b20702231107p1cf7f4f3n5896aa7e8ef0ecaf@mail.gmail.com> <200702240248.19713.h.schmalzbauer@omnisec.de> <80f4f2b20702231901k52fa7585w92f61d81b40b7cf5@mail.gmail.com> <200702240408.40222.h.schmalzbauer@omnisec.de>
next in thread | previous in thread | raw e-mail | index | archive | help
I did the ssh after you did the previous mail, but it didn't fix the proble= m. I'm not having problems senmail or named, they were simply mentioned in the man page. I never had named running, and I didn't realize sendmail was running. The latter was my problem with sendmail. That problem as I said is fixed. Beyond that I don't even know which process on my system are daemons at this point, except usbd and devd, neither of which (to my knowledge) should be listening to any sockets. Actually there are a couple of kernel processes (pagedaemon, vmdaemon, and bufdaemon), but I don't know where to find documentation on them, X, and KDM. I can't find anything on limiting sockets of these to a specific IP only. -Jim STapleton On 2/24/07, Harald Schmalzbauer <h.schmalzbauer@omnisec.de> wrote: > Am Samstag, 24. Februar 2007 04:01 schrieben Sie: > > I saw them in there, but that section seemed to be lacking in what I > > needed to do... I admit I missed the alias until someone reminded me. > > > > by lacking I mean: > > To configure sshd(8), it is necessary to modify /etc/ssh/sshd_conf= ig. > > > > doesn't tell me what I need to change, and I couldn't find the answer > > in the docs about sshd. I assume that having the listen port set to > > 192.168.1.84 should be sufficient, but that doesn't fix the problem > > Well, have you sighuped sshd? If you have "ListenAddress 192.168.1.84" > in /etc/ssh/sshd_config (and sighuped/restarted sshd) it's impossible tha= t it > answers connections to 192.168.1.85 > > > OK, I didn't bother editing sendmail and named's files, I thought the > > suggested: sendmail_enable=3D"NO" > > would keep it from starting. I did turn off sendmail, but that didn't > > fix the problem. named is not running, and hasn't run on this machine. > > What problems do you have with named and sendmail? > If you don't need them don't care about, just keep them disabled. > > You have to limit listening sockets of all daemons running on the host sy= stem. > That's all. > > Best regards, > > -Harry > > -- > OmniSEC - UNIX und Windows Netzwerke - Sicher > Harald Schmalzbauer > Flintsbacher Str. 3 > 80686 M=FCnchen > +49 (0) 89 18947781 > +49 (0) 160 93860101 >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?80f4f2b20702231921x603c759g9b143b24edfaa7d5>