From owner-freebsd-hackers@FreeBSD.ORG  Fri Sep  5 11:05:11 2003
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id BFBF916A4BF; Fri,  5 Sep 2003 11:05:11 -0700 (PDT)
Received: from oniws.ca (oniws.ca [67.69.49.138])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 7FF2843FB1; Fri,  5 Sep 2003 11:05:08 -0700 (PDT)
	(envelope-from Dwayne.MacKinnon@xwave.com)
Received: from xwave.com ([192.168.0.126])
	by oniws.ca (8.12.8p1/8.12.8) with ESMTP id h85I550w001102;
	Fri, 5 Sep 2003 14:05:06 -0400 (EDT)
	(envelope-from Dwayne.MacKinnon@xwave.com)
Message-ID: <3F58D04B.6050805@xwave.com>
Date: Fri, 05 Sep 2003 14:04:59 -0400
From: Dwayne MacKinnon <Dwayne.MacKinnon@xwave.com>
Organization: xwave
User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.4) Gecko/20030702
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: "Simon L. Nielsen" <simon@FreeBSD.org>
References: <3F589E94.1080508@xwave.com>
	<20030905154646.GA59881@rot13.obsecurity.org> <3F58B3F4.3020502@xwave.com>
	<20030905161030.GC22913@pun.isi.edu> <3F58B9D6.7040102@xwave.com>
	<20030905171125.GA1356@FreeBSD.org>
In-Reply-To: <20030905171125.GA1356@FreeBSD.org>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
cc: freebsd-hackers@FreeBSD.org
cc: Ted Faber <faber@ISI.EDU>
cc: Kris Kennaway <kris@obsecurity.org>
Subject: Re: PUzzling sshd behaviour
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: Dwayne.MacKinnon@xwave.com
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Sep 2003 18:05:11 -0000

Simon L. Nielsen wrote:

> Do you use Privilege Separation?  That can give interesting results with
> DNS due to chroot into /var/empty...  see the mailing lists archives.

Argh. This frustrates me. I did some searching on various mailing lists 
before, and when they talked about switching into /var/empty they were 
talking about the box abruptly attempting to make DNS lookups on the 
localhost.

That wasn't what I was seeing, so I thought it was something different. 
But I went looking again, and this time found my exact situation on 
freebsd,stable. And yes, it's the privilege separation / chroot issue.

My apologies for wasting time and bandwidth.

DMK