From owner-freebsd-security  Wed Jun 26 18:21: 7 2002
Delivered-To: freebsd-security@freebsd.org
Received: from gate.volant.org (gate.volant.org [207.111.218.246])
	by hub.freebsd.org (Postfix) with ESMTP id 1219F37C049
	for <freebsd-security@freebsd.org>; Wed, 26 Jun 2002 17:23:12 -0700 (PDT)
Received: from 216-55-134-176.dsl.san-diego.abac.net ([216.55.134.176] helo=[192.168.0.13])
	by gate.volant.org with asmtp (TLSv1:DES-CBC3-SHA:168)
	(Exim 3.33 #1)
	id 17NN3n-000J98-00; Wed, 26 Jun 2002 17:22:55 -0700
Date: Wed, 26 Jun 2002 17:22:53 -0700
From: Pat Lashley <patl+freebsd@volant.org>
To: Poul-Henning Kamp <phk@critter.freebsd.dk>,
	FreeBSD Security Mailling List <freebsd-security@FreeBSD.ORG>
Subject: Jailing SSHd [Was: Re: OpenSSH Security (just a question, please no
 f-war)]
Message-ID: <2849830000.1025137373@mccaffrey.phoenix.volant.org>
X-Mailer: Mulberry/2.2.1 (Linux/x86 Demo)
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
 protocol="application/pgp-signature";
 boundary="==========236915482=========="
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

--==========236915482==========
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

--On Wednesday, June 26, 2002 09:07:36 PM +0200 Poul-Henning Kamp=20
<phk@critter.freebsd.dk> wrote:

> Which reminds me that we should really tweak the code and put it in a
> jail instead of a chroot.

Careful there.  Some of us are using SSH to log into jails running virtual
hosting environments.  The default installation needs to be able to run if
it is already within a jail when sshd is started.



-Pat

--==========236915482==========
Content-Type: application/pgp-signature
Content-Transfer-Encoding: 7bit

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (FreeBSD)

iD8DBQE9GlrdncYNbLD8wuMRAnHAAJ9E54OecqxkXB87x5h3JUaWYCk8DgCg5eqj
6nj4hTDt4Nk4yrrKhlse0aU=
=MAfR
-----END PGP SIGNATURE-----

--==========236915482==========--


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message