frebsd jails advice
Peter Boosten
peter at boosten.org
Tue Dec 11 18:48:16 UTC 2018
> On 11 Dec 2018, at 17:32, James B. Byrne via freebsd-questions <freebsd-questions at freebsd.org> wrote:
> [SNIP]
> [root at hll124 ~]# gvim
>
> X11 connection rejected because of wrong authentication.
> [SNIP]
>> What about ssh_config and sshd_config?
> Both the client host and the jail have pretty much the same settings.
>
> # Local overrides
> AllowTcpForwarding yes
> Banner /etc/ssh/ssh_pre_logon.txt
> GatewayPorts yes
> IgnoreRhosts yes
> IgnoreUserKnownHosts no
> KeepAlive yes
> LoginGraceTime 60
> PermitEmptyPasswords no
> PermitRootLogin without-password
> PrintMotd yes
> PubkeyAuthentication yes
> StrictModes yes
> ChallengeResponseAuthentication no
> MaxAuthTries 6
> PasswordAuthentication yes
> Protocol 2
>
What’s the setting of X11UseLocalhost in /etc/ssh/sshd_config on the jail?
You should set it to ‘NO’, because jails and localhost do not play together very nice.
Peter
More information about the freebsd-questions
mailing list