PTY's in a FreeBSD Jail
Kris Kennaway
kris at obsecurity.org
Tue Jun 6 16:42:03 UTC 2006
On Tue, Jun 06, 2006 at 12:31:19PM -0400, Kevin Wortman wrote:
> All,
>
> Sometime ago there was a question posed about the error "Server refused to
> allocate pty" when trying to ssh into a freebsd jail. It seemed to be
> answered by someone saying that the command "mount_devfs devfs
> /your/jail/dir/dev" needed to enter, which in fact does make the jail start
> working. However, it was stated in the same posting that this was not
> considered to be secure.
>
> Hence my question, if this is in fact not secure, how can I get my jail
> properly configured in FreeBSD 6.0 without compromising the security of the
> box? I ask because I have several boxes currently running in my environment
> with jails (FreeBSD 4.x) and do not see this command anywhere in the startup
> scripts yet the jailed environment appears to be working like a champ.
>
> I am fairly new to the FreeBSD world so please pardon my ignorance, if I
> have displayed any.
See the jail manpage for how to set up devfs.
Kris
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20060606/b01ff4c4/attachment.pgp
More information about the freebsd-questions
mailing list