Re: SSH connection from within a jail
the solution and a brief discussion can be seen here in case you are interested: http://lists.freebsd.org/pipermail/freebsd-hackers/2005-November/014450.html andras Greg Albrecht wrote: are you using the default /etc/ssh/sshd_config? i'm currently running jails with ssh and don't recall having this problem. the only thing i remember explicitly having to do is tell sshd to bind to the jail's IP. -g On 12/01/07, Andras GELANYI [EMAIL PROTECTED] wrote: Do you know how can I initaite a SSH connection from within a jail? I always get the Host key verification failed. message. Starting the ssh session with -v it seems that the problem is with tty allocation. debug1: read_passphrase: can't open /dev/tty: Device busy The jail has devfs mounted with the default ruleset. (As seen in /usr/share/examples/etc/defaults/devfs.rules) Andras smime.p7s Description: S/MIME Cryptographic Signature
SSH connection from within a jail
Do you know how can I initaite a SSH connection from within a jail? I always get the Host key verification failed. message. Starting the ssh session with -v it seems that the problem is with tty allocation. debug1: read_passphrase: can't open /dev/tty: Device busy The jail has devfs mounted with the default ruleset. (As seen in /usr/share/examples/etc/defaults/devfs.rules) Andras smime.p7s Description: S/MIME Cryptographic Signature
Re: Are there any log files which shows who is logging to a FreeBSD box and when?
hi, have a look at /var/log/auth.log (and also on utmp) VeeJay wrote: Hi Can anyone tell? Are there any log files which shows who is logging to a FreeBSD box and when? If yes, where can one find them? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: vpn client (pptp) inside a jail
On Thu, 4 Jan 2007 13:54:22 +0200, Nikos Vassiliadis [EMAIL PROTECTED] wrote: Anyway. Could someone tell me whether it is possible or not? Does anyone know a solution for assigning a jail to a trusted network through a tunnel without any influence on the base system's networking? I can use my pptp address from within a jail, of course the tunnel is already up and visible to the base system. You can also get the secondary IP address effect for your jail using a loopback interface. For example: ng0 1.2.3.4 - 5.6.7.8 lo1 9.10.11.12 9.10.11.12 would also be your jail address, totally unrelated to the tunnel. I am not sure what you are looking for. Perhaps you should explain a bit further. Nikos i do not really have a complete plan at the moment but an idea to use a jail on my remote system as a sandbox. i mean i would like to set up a jail and use it (sometimes) as client / virtual machine in a remote network through some kind of tunneling without any modification to the base system and sometimes as a regular host to test and compile some completelydifferent stuff. i suspect that it is impossible but it might look like as configuring a pseudo device (eg gre) and use only pure ip traffic through the base system's nat until the jail's endpoint. to be honest i am pretty new to freebsd jails so i might be wromg. so please correct me if you know more. :) of course the best solution would be to use true virtualization. anyway do you know anything about the xen dom0 status on freebsd x86 smp? :) andras ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
vpn client (pptp) inside a jail
Hi, In a case when a pptp client is running a jail would be great. But in my opinion it is not possible because of the lack of special interfaces and facilities (eg. GRE) in jails. Anyway. Could someone tell me whether it is possible or not? Does anyone know a solution for assigning a jail to a trusted network through a tunnel without any influence on the base system's networking? Regards, Andras ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]