Closed port 22 in the jail redirects to the outer system

Bertram Scharpf lists at
Wed Dec 7 00:24:44 UTC 2016


I'm fed up with my log files being polluted by failing SSH
login attempts. I disabled password authentication totally
so there's not really a security problem, but it's annoying.
Using a higher port number does only help for a while.

All I want to do is to log in myself from remote. Now I
tried to do the following: A jail runs an HTTP server with
several subpages. One of them asks for a password and then
starts an SSH daemon that accepts just one connection and
closes afterwards. From inside the jail then I can ssh to
the outer machine.

But: As long as the SSH daemon inside the jail doesn't run,
the port 22 request gets caught by the outer system and
again I get my logfiles polluted.

How can I make a port 22 request fail if an SSH server is
running on the outer machine but not inside the jail?

Thanks in advance.


Bertram Scharpf
Stuttgart, Deutschland/Germany

More information about the freebsd-questions mailing list