From owner-freebsd-hackers@FreeBSD.ORG Tue Nov 15 13:57:26 2005 Return-Path: X-Original-To: freebsd-hackers@freebsd.org Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3FB7E16A41F for ; Tue, 15 Nov 2005 13:57:26 +0000 (GMT) (envelope-from casteld73@yahoo.com) Received: from web60316.mail.yahoo.com (web60316.mail.yahoo.com [209.73.178.124]) by mx1.FreeBSD.org (Postfix) with SMTP id B32D643D45 for ; Tue, 15 Nov 2005 13:57:25 +0000 (GMT) (envelope-from casteld73@yahoo.com) Received: (qmail 94333 invoked by uid 60001); 15 Nov 2005 13:57:24 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:Received:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=I3uz6ygLwbscGhHZ60Yp1yKn9O7NC8dPhqMioMLFr5H20hIGXgAmoseMpQ674mk7W5kpXdvmjfTQwOAl6UQMzJtGwzJT4sXUvMeOJb5Qxokd+uC80JJyCAr5uBugmH0yskCATruwPDRPI9i/iJil+w3NU67r5g//DNxn9gutbPg= ; Message-ID: <20051115135724.94331.qmail@web60316.mail.yahoo.com> Received: from [66.95.160.2] by web60316.mail.yahoo.com via HTTP; Tue, 15 Nov 2005 05:57:24 PST Date: Tue, 15 Nov 2005 05:57:24 -0800 (PST) From: d c To: Koen Martens In-Reply-To: <4377A15D.7060100@metro.cx> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-hackers@freebsd.org, d c Subject: Re: SSH From within a Jail X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Nov 2005 13:57:26 -0000 Koen Martens wrote: Koen Martens wrote: > d c wrote: > >>Greetings: >> >>I currently am running Freebsd 6.0 Release. >> >>I am experimenting with jails and have run into a >>problem. I need to ssh from within my jail to another >>server. Actually I need to use scp. WHen I try it I >>get the error: "Host key verification failed." > > > This could also be something related to permissions on the .ssh > directory, but you cleared that out of the way if i understand the > rest of this thread correctly. I remember having this problem once, > but can't remember right now what i did to solve it.. I usually > compile openssh from source anyway, so you might try that. If that > works, it would probably be interesting to see what is the > difference between your own hand-rolled openssh and the one that > came with your world. Just remembered something else: do you jexec into the jail, or do you do a proper logon (eg. ssh into the jail). I think that if you jexec into the jail and then try to ssh, you might have a problem because you aren't really logged in to the jail and thus have no (psuedo) tty associated with your session.. Koen -- K.F.J. Martens, Sonologic, http://www.sonologic.nl/ Networking, hosting, embedded systems, unix, artificial intelligence. Public PGP key: http://www.metro.cx/pubkey-gmc.asc Wondering about the funny attachment your mail program can't read? Visit http://www.openpgp.org/ _______________________________________________ freebsd-hackers@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-hackers To unsubscribe, send any mail to freebsd-hackers-unsubscribe@freebsd.org Yes- Koen you hit the nail on the head. If I use jexec I cannot use ssh to connect to other servers. I also ran into problems with make in ports tree and using screen. However- If I ssh in I can perform all functions (ssh and make) as if it were it own system...aka- jail. The man page should reflect this. That is...all compiling and management of the jail should be done through ssh. Only use jexec for intial configuration and emergency related work. Thanks everyone for their response and ideas. --------------------------------- Yahoo! FareChase - Search multiple travel sites in one click.