From owner-freebsd-security  Tue Jul 31 20:35:40 2001
Delivered-To: freebsd-security@freebsd.org
Received: from postoffice.aims.com.au (advanc2.lnk.telstra.net [139.130.119.73])
	by hub.freebsd.org (Postfix) with ESMTP id 921F037B401
	for <security@freebsd.org>; Tue, 31 Jul 2001 20:35:33 -0700 (PDT)
	(envelope-from chris@aims.com.au)
Received: from postoffice.aims.com.au (nts-ts1.aims.private [192.168.10.2])
	by postoffice.aims.com.au  with ESMTP id f713ZV661171
	for <security@freebsd.org>; Wed, 1 Aug 2001 13:35:31 +1000 (EST)
	(envelope-from chris@aims.com.au)
Received: from ntsts1 by aims.com.au
	with SMTP (MDaemon.v3.5.3.R)
	for <security@freebsd.org>; Wed, 01 Aug 2001 13:34:47 +1000
Reply-To: <chris@aims.com.au>
From: "Chris Knight" <chris@aims.com.au>
To: <steve@havk.org>
Cc: <security@freebsd.org>
Subject: RE: SSHD in JAIL
Date: Wed, 1 Aug 2001 13:34:45 +1000
Message-ID: <02b701c11a3a$e96e7480$020aa8c0@aims.private>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="US-ASCII"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2911.0)
In-Reply-To: <20010731210107.G47172@bsd.havk.org>
Importance: Normal
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200
X-Return-Path: chris@aims.com.au
X-MDaemon-Deliver-To: security@freebsd.org
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

Howdy,

Er, yeah. "Sorry, this brain is full, please insert another brain". I didn't
pay enough attention and missed the "mounted with nodev" line. Carry on.

Regards,
Chris Knight
Systems Administrator
AIMS Independent Computer Professionals
Tel: +61 3 6334 6664  Fax: +61 3 6331 7032  Mob: +61 419 528 795
Web: http://www.aims.com.au



> -----Original Message-----
> From: Steve Price [mailto:steve@havk.org]
> Sent: Wednesday, 1 August 2001 12:01
> To: Chris Knight
> Subject: Re: SSHD in JAIL
>
>
> On Wed, Aug 01, 2001 at 11:46:12AM +1000, Chris Knight wrote:
>
> >>> How we can start sshd in the jail using jail directory
> >>> mounted with nodev?
> >>
> >> You can't: it needs /dev/urandom.
> >>
> > You need to chroot to your jail, cd to dev and run MAKEDEV
> jail. This will
> > create /dev/urandom in the jail environment.
>
> That's exactly Kris' point.  With the jail directory mounted with
> nodev there is no /dev. :)
>
> -steve
>



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message