kern/84215: [jail] [patch] wildcard ip (INADDR_ANY) should not
bind inside a jail
Cheng-Lung Sung
clsung at FreeBSD.org
Tue Apr 18 03:00:39 UTC 2006
The following reply was made to PR kern/84215; it has been noted by GNATS.
From: Cheng-Lung Sung <clsung at FreeBSD.org>
To: bug-followup at FreeBSD.org, frank at pinky.sax.de
Cc: rwatson at FreeBSD.org
Subject: Re: kern/84215: [jail] [patch] wildcard ip (INADDR_ANY) should not bind inside a jail
Date: Tue, 18 Apr 2006 10:51:10 +0800
--tThc/1wpZn/ma/RB
Content-Type: text/plain; charset=big5
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
Hi,
I've tested it, and found sshd doesn't work on this patch
Do you have any idea of it?
Here is my experiment on the patch.
Host:
w/o specify ListenAddress, sshd will bind to all ip (include jails)
w/ specify ListenAddress, sshd will bind to only specified ip
Jail:
doesn't matter if ListenAddress specified.
Normally, I tested with 'w/o specify ListenAddress', then
ssh to Jail will indeed ssh to Host.
When I turn net.inet.ip.bindwildcardtojails off (1 -> 0)
ssh to Jail should in need ssh to Jail, but failed.
--=20
Cheng-Lung Sung - clsung@
--tThc/1wpZn/ma/RB
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (FreeBSD)
iD8DBQFERFQd+AeJ85Vui8ERAkDCAJwP5E3jiC7uiDxWZLRAkmQTMDTEdQCdEFjn
EJpDiRJ9SiYgcipEG01GLso=
=bQdN
-----END PGP SIGNATURE-----
--tThc/1wpZn/ma/RB--
More information about the freebsd-bugs
mailing list