From owner-freebsd-questions@FreeBSD.ORG Sat Feb 24 03:30:16 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id D526D16A401 for ; Sat, 24 Feb 2007 03:30:16 +0000 (UTC) (envelope-from h.schmalzbauer@omnisec.de) Received: from host.omnisec.de (host.omnisec.de [62.245.232.135]) by mx1.freebsd.org (Postfix) with ESMTP id 5342E13C471 for ; Sat, 24 Feb 2007 03:30:16 +0000 (UTC) (envelope-from h.schmalzbauer@omnisec.de) Received: from tek.flintsbach.schmalzbauer.de (tek.flintsbach.schmalzbauer.de [172.21.2.3]) by host.omnisec.de (8.13.8/8.13.8) with ESMTP id l1O3UAvG052623 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Sat, 24 Feb 2007 04:30:15 +0100 (CET) (envelope-from h.schmalzbauer@omnisec.de) Received: from titan.flintsbach.schmalzbauer.de (titan.flintsbach.schmalzbauer.de [IPv6:fec0::1:0:0:1:1]) by tek.flintsbach.schmalzbauer.de (8.13.8/8.13.8) with ESMTP id l1O3U9Wc030276; Sat, 24 Feb 2007 04:30:09 +0100 (CET) (envelope-from h.schmalzbauer@omnisec.de) Received: from localhost (localhost [[UNIX: localhost]]) by titan.flintsbach.schmalzbauer.de (8.13.8/8.13.8/Submit) id l1O3U9ZW010049; Sat, 24 Feb 2007 04:30:09 +0100 (CET) (envelope-from h.schmalzbauer@omnisec.de) From: Harald Schmalzbauer Organization: OmniSEC To: freebsd-questions@freebsd.org Date: Sat, 24 Feb 2007 04:30:09 +0100 User-Agent: KMail/1.9.4 References: <80f4f2b20702231107p1cf7f4f3n5896aa7e8ef0ecaf@mail.gmail.com> <200702240408.40222.h.schmalzbauer@omnisec.de> <80f4f2b20702231921x603c759g9b143b24edfaa7d5@mail.gmail.com> In-Reply-To: <80f4f2b20702231921x603c759g9b143b24edfaa7d5@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Message-Id: <200702240430.09674.h.schmalzbauer@omnisec.de> Cc: Jim Stapleton Subject: Re: problems with jail X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 24 Feb 2007 03:30:16 -0000 Am Samstag, 24. Februar 2007 04:21 schrieb Jim Stapleton: > I did the ssh after you did the previous mail, but it didn't fix the > problem. > > I'm not having problems senmail or named, they were simply mentioned > in the man page. I never had named running, and I didn't realize > sendmail was running. The latter was my problem with sendmail. That > problem as I said is fixed. Beyond that I don't even know which > process on my system are daemons at this point, except usbd and devd, > neither of which (to my knowledge) should be listening to any sockets. > Actually there are a couple of kernel processes (pagedaemon, vmdaemon, > and bufdaemon), but I don't know where to find documentation on them, > X, and KDM. I can't find anything on limiting sockets of these to a > specific IP only. To see what daemons are listening you can use 'netstat -f inet -a'. Then yo= u=20 see if you have to limit some other daemons (use -f inet6 for IPv6 if=20 configured). Please post the output of the command above to see why you get ssh connecti= ons=20 to your jail IP answered by the host's ssh daemon. =2DHarry =2D-=20 OmniSEC - UNIX und Windows Netzwerke - Sicher Harald Schmalzbauer =46lintsbacher Str. 3 80686 M=FCnchen +49 (0) 89 18947781 +49 (0) 160 93860101