Configuring FreeBSD Jails: Difference between revisions
From ZS64
Jump to navigationJump to search
No edit summary |
(Translate, wiki) |
||
(One intermediate revision by the same user not shown) | |||
Line 1: | Line 1: | ||
After creating a jail in FreeBSD, the default configuration of many subsystems should be adapted to better suit the restrictions in a jail. | |||
==sshd== | |||
Normally, sshd will create X11 connections on the localhost host address only to improve security. Since jails don't have a loopback address, X11 forwarding only works if sshd uses a wildcard bind for the X11 connections. | |||
In /etc/ssh/sshd_config, add: | |||
X11UseLocalhost no | |||
In | |||
X11UseLocalhost no | |||
Latest revision as of 18:34, 5 September 2006
After creating a jail in FreeBSD, the default configuration of many subsystems should be adapted to better suit the restrictions in a jail.
sshd
Normally, sshd will create X11 connections on the localhost host address only to improve security. Since jails don't have a loopback address, X11 forwarding only works if sshd uses a wildcard bind for the X11 connections.
In /etc/ssh/sshd_config, add:
X11UseLocalhost no