how to configure host login account to use jail?

Fbsd8 fbsd8 at a1poweruser.com
Sun Dec 23 15:27:18 UTC 2012


Matthew Seaman wrote:
> On 23/12/2012 13:11, Fbsd8 wrote:
>> Ok but as my question asks, how do you configure things
>> to get that to work? I am after the details.
> 
> You need to run an instance of sshd in each jail.  Because sshd defaults
> to binding to INADDR_ANY, you need to modify the sshd configuration in
> the host system, so it binds to a specific address, otherwise it will
> likely block out the jailed sshd's:
> 
> ListenAddress 192.0.2.1
> ListenAddress 2001:DB8::1
> ListenAddress 127.0.0.1
> ListenAddress ::1
> 
> sshd in the jails doesn't need any similar configuration change.
> 
> You don't need user accounts in your host system for the jail users --
> each jail can have it's own passwd file etc.  However, it can be useful
> to make sure that UID numbers for regular users in host and jails don't
> overlap.
> 
> 	Cheers,
> 
> 	Matthew
> 
> 

What does the remote ssh login command look like?
ssh on the host does not use the standard port 22.
It uses 2299 instead. this stopped all the ssh break-in attempts.


More information about the freebsd-questions mailing list