From owner-freebsd-security@FreeBSD.ORG Wed Mar 8 20:07:10 2006 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A193316A420 for ; Wed, 8 Mar 2006 20:07:10 +0000 (GMT) (envelope-from ascheepers@vianetworks.nl) Received: from smtp-vbr15.xs4all.nl (smtp-vbr15.xs4all.nl [194.109.24.35]) by mx1.FreeBSD.org (Postfix) with ESMTP id A025243D6E for ; Wed, 8 Mar 2006 20:07:08 +0000 (GMT) (envelope-from ascheepers@vianetworks.nl) Received: from darkstar.thuis.net (void-ptr.xs4all.nl [80.126.86.58]) by smtp-vbr15.xs4all.nl (8.13.3/8.13.3) with ESMTP id k28K76oA088391; Wed, 8 Mar 2006 21:07:06 +0100 (CET) (envelope-from ascheepers@vianetworks.nl) From: Axel Scheepers To: "Ricardo A. Reis" In-Reply-To: <440DAEB2.3030102@yahoo.com.br> References: <20060307150703.75574.qmail@web30609.mail.mud.yahoo.com> <440DAEB2.3030102@yahoo.com.br> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-vNneizLBHqsSc02K31pV" Date: Wed, 08 Mar 2006 21:07:06 +0100 Message-Id: <1141848426.3290.79.camel@localhost.localdomain> Mime-Version: 1.0 X-Mailer: Evolution 2.2.3 X-Virus-Scanned: by XS4ALL Virus Scanner X-Mailman-Approved-At: Wed, 08 Mar 2006 20:22:29 +0000 Cc: freebsd-security@freebsd.org, Cyril Jaouich Subject: Re: Jails and loopback interfaces X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: ascheepers@vianetworks.nl List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Mar 2006 20:07:10 -0000 --=-vNneizLBHqsSc02K31pV Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Tue, 2006-03-07 at 13:02 -0300, Ricardo A. Reis wrote: > Hi Cyril, >=20 > For access loopback inside the jail, is necessary configure in host serve= r > alias for loopback and start jail using loopback. > Remember loopback address is all 127/8 ! >=20 I just recently tried jails but I thought 127.0.0.1 would be mapped to the jails ip-address, which eventually gets mapped to the ip specified in the parameter or rc.conf. I could be wrong though although my test-jail setup confirms this on 6.1-PRERELEASE: test-jail# telnet localhost 22 Trying ::1... Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. SSH-2.0-OpenSSH_4.2p1 FreeBSD-20050903 Kind regards, Axel Scheepers --=-vNneizLBHqsSc02K31pV Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) iD8DBQBEDzlqvOFCXiGjP+ARAlzeAKC5HRWZRBURUP6EW1F8J3b6YkEw+wCfSCH4 QAjR1BIjPrgecM1rXgBp75U= =VXx/ -----END PGP SIGNATURE----- --=-vNneizLBHqsSc02K31pV--