Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 5 Dec 2002 20:29:45 +0100
From:      "Didier Wiroth" <didier.wiroth@mcesr.etat.lu>
To:        <freebsd-questions@freebsd.org>
Subject:   Still a few problems in jail 
Message-ID:  <000001c29c94$aab6e140$952b6e94@lucifer>

Next in thread | Raw E-Mail | Index | Archive | Help
Hey,
Using (FreeBSD 4.7-Release)
It takes considerably long to login from a workstation to a jailed ssh
server or sometimes I even can't login.
The "login:" appears, and then "Sent username 'xyz'" and then nothing
happens or after 20 or even far more seconds I can enter my password!

For information: login in from a workstation with ssh on the host itself
causes no problems!

The only option in the jail sshd_config file which is set, is the
ListenAddress which has the ip address of the jail!

As you can see below there are problems with "timeout".

(Some comments on the other errors opensocket_f bind etc.. Are
welcomed!! I replaced the original ip address with "jail_ip_address",
I'm also running bind in a sandbox see the previous posting in the list
with the titel "Jail problems")

I have deleted the /var/log/messages and rebooted this is the output
after a fresh reboot!
%tail /var/log/messages
Dec  5 20:15:46 dns named[321]: not listening on any interfaces
Dec  5 20:15:46 dns named[321]: opensocket_f:
bind([jail_ip_address].53): Address already in use
Dec  5 20:15:46 dns named[321]: opensocket_f:
bind([jail_ip_address].53): Address already in use
Dec  5 20:15:46 dns sshd[331]: error: Bind to port 22 on jail_ip_address
failed: Address already in use.
Dec  5 20:15:46 dns sshd[331]: fatal: Cannot bind any address.
Dec  5 20:15:46 dns syslogd: exiting on signal 15
Dec  5 20:16:55 dns named[198]: starting (/etc/named.conf).  named
8.3.3-REL Wed Dec  4 09:59:37 CET 2002
xyz@xyz:/usr/obj/usr/src/usr.sbin/named
Dec  5 20:16:55 dns named[198]: limit files set to fdlimit (1024)
Dec  5 20:16:55 dns named[199]: Ready to answer queries.
Dec  5 20:17:44 dns sshd[237]: fatal: Timeout before authentication for
my_pc_somewhere

Here is rc.conf from the jail:
hostname="x.y.z"
portmap_enable="NO"
network_interface=""
sshd_enable="YES"
sendmail_enable="NONE"
syslog_enable="YES"
syslogd_flags="-ss -l /etc/namedb/dev/log"
named_enable="YES"
named_flags="-u bind -g bind -t /etc/namedb /etc/named.conf"

Here is sshd_config from the jail:


Many many many thanks for any
Help or comments
didier



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?000001c29c94$aab6e140$952b6e94>