From owner-freebsd-hackers@FreeBSD.ORG Sat Nov 12 13:43:52 2005 Return-Path: X-Original-To: freebsd-hackers@freebsd.org Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3669816A420 for ; Sat, 12 Nov 2005 13:43:52 +0000 (GMT) (envelope-from casteld73@yahoo.com) Received: from web60325.mail.yahoo.com (web60325.mail.yahoo.com [209.73.178.133]) by mx1.FreeBSD.org (Postfix) with SMTP id C1ABB43D45 for ; Sat, 12 Nov 2005 13:43:51 +0000 (GMT) (envelope-from casteld73@yahoo.com) Received: (qmail 28758 invoked by uid 60001); 12 Nov 2005 13:43:51 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:Received:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=WP7hHHUQ5ufAtv/ARbaLIlEzgfH6CMyRSCn2IxJlFGXYiZBcPfTGHDINO6BTepYJb7bAia7EVsRqDrskEieUIp2V9h2wgcDii82x8xLYnSUWwdxpc1rEBIkY5dhIO2QIlde7fc+70xLfcln6L7cn853MiyTBj/inSzIaezCnU7g= ; Message-ID: <20051112134351.28756.qmail@web60325.mail.yahoo.com> Received: from [67.139.63.215] by web60325.mail.yahoo.com via HTTP; Sat, 12 Nov 2005 05:43:51 PST Date: Sat, 12 Nov 2005 05:43:51 -0800 (PST) From: d c To: d c , delphij@delphij.net In-Reply-To: <20051112133842.28195.qmail@web60325.mail.yahoo.com> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Cc: freebsd-hackers@freebsd.org Subject: Re: SSH From within a Jail X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 12 Nov 2005 13:43:52 -0000 here is the rsult from using -v. THis should help. ns1# ssh -v 10.0.0.60 OpenSSH_4.2p1 FreeBSD-20050903, OpenSSL 0.9.7e-p1 25 Oct 2004 debug1: Reading configuration data /etc/ssh/ssh_config debug1: Connecting to 10.0.0.60 [10.0.0.60] port 22. debug1: Connection established. debug1: permanently_set_uid: 0/0 debug1: identity file /root/.ssh/identity type -1 debug1: identity file /root/.ssh/id_rsa type -1 debug1: identity file /root/.ssh/id_dsa type -1 debug1: Remote protocol version 2.0, remote software version OpenSSH_3.8.1p1 FreeBSD-20040419 debug1: match: OpenSSH_3.8.1p1 FreeBSD-20040419 pat OpenSSH_3.* debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_4.2p1 FreeBSD-20050903 debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: server->client aes128-cbc hmac-md5 none debug1: kex: client->server aes128-cbc hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP debug1: SSH2_MSG_KEX_DH_GEX_INIT sent debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY debug1: read_passphrase: can't open /dev/tty: Device busy Host key verification failed. I just don't understand how to fix "can't open /dev/tty" regards --- d c wrote: > > > --- Xin LI wrote: > > > On 11/12/05, d c wrote: > > > telnet 10.0.0.60 22 > > > > > > Connected to 10.0.0.60. > > > Escape character is '^]'. > > > SSH-2.0-OpenSSH_3.8.1p1 FreeBSD-20040419 > > > > > > If I ssh into 10.0.0.60 from the host system > that > > the > > > jail is running on I connect right in w/o any > > > problems. > > > > > > Just the jails on the host giving me probs. > > > > > > I also tried recreating the /etc/ssh/ssh_hostkey > > but > > > that didn;t help > > > > Do you have /dev/*random available in the jail? > > Typically there > > should be /dev/random and a /dev/urandom which is > a > > symbolic link to > > /dev/random. IIRC there is problem if you don't > > have these in the > > jail if you do some ssh related operations... > > > > Cheers, > > -- > > Xin LI > http://www.delphij.net > > > > Yes there is /dev/random and /dev/urandom > > Has anyone successfully used ssh (client) from > within > a jail to connect to other servers? > > I have recreate numerous jails but all suffer the > same > problem. > > regards > > > > __________________________________ > Yahoo! FareChase: Search multiple travel sites in > one click. > http://farechase.yahoo.com > _______________________________________________ > freebsd-hackers@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-hackers > To unsubscribe, send any mail to > "freebsd-hackers-unsubscribe@freebsd.org" > __________________________________ Yahoo! Mail - PC Magazine Editors' Choice 2005 http://mail.yahoo.com