FreeBSD-11.1 Jails and SSL

Thu Jul 19 20:38:29 UTC 2018

> Am 19.07.2018 um 22:29 schrieb James B. Byrne <byrnejb at harte-lyne.ca>:
> 
> UseDNS=YES in /etc/ssh/sshd_config

Does the problem persists, if you disable this option?

Regards,
Philipp

> Am 19.07.2018 um 22:29 schrieb James B. Byrne <byrnejb at harte-lyne.ca>:
> 
> 
> On Thu, July 19, 2018 16:22, Philipp Vlassakakis wrote:
>> Does DNS work in the jail without any delay/issue? Maybe there are
>> problems with dns resolution?
>> Is â€žUseDNSâ€œ turned on? ->
>> https://www.freebsd.org/cgi/man.cgi?sshd_config(5)
> 
> UseDNS=YES in /etc/ssh/sshd_config
> 
> 
> DNS works fine insofar as I can tell:
> 
> # time drill mx32.harte-lyne.ca
> ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 25300
> ;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 4
> ;; QUESTION SECTION:
> ;; mx32.harte-lyne.ca.	IN	A
> 
> ;; ANSWER SECTION:
> mx32.harte-lyne.ca.	157365	IN	A	216.185.71.32
> 
> ;; AUTHORITY SECTION:
> harte-lyne.ca.	70959	IN	NS	dns03.harte-lyne.ca.
> harte-lyne.ca.	70959	IN	NS	dns04.harte-lyne.ca.
> harte-lyne.ca.	70959	IN	NS	dns02.harte-lyne.ca.
> harte-lyne.ca.	70959	IN	NS	dns01.harte-lyne.ca.
> 
> ;; ADDITIONAL SECTION:
> dns01.harte-lyne.ca.	157359	IN	A	216.185.71.33
> dns02.harte-lyne.ca.	157359	IN	A	209.47.176.33
> dns03.harte-lyne.ca.	157359	IN	A	216.185.71.34
> dns04.harte-lyne.ca.	157359	IN	A	209.47.176.34
> 
> ;; Query time: 0 msec
> ;; SERVER: 127.0.0.1
> ;; WHEN: Thu Jul 19 16:27:47 2018
> ;; MSG SIZE  rcvd: 196
> 
> real	0m0.006s
> user	0m0.000s
> sys	0m0.005s
> 
> No delay there.
> 
> -- 
> ***          e-Mail is NOT a SECURE channel          ***
>        Do NOT transmit sensitive data via e-Mail
> Do NOT open attachments nor follow links sent by e-Mail
> 
> James B. Byrne                mailto:ByrneJB at Harte-Lyne.ca
> Harte & Lyne Limited          http://www.harte-lyne.ca
> 9 Brockley Drive              vox: +1 905 561 1241
> Hamilton, Ontario             fax: +1 905 561 0757
> Canada  L8E 3C3