[FS#4154] procd-ujail: makes dnsmasq refuse to answer dns queries

OpenWrt Bugs openwrt-bugs at lists.openwrt.org
Wed Nov 24 01:41:33 PST 2021


THIS IS AN AUTOMATED MESSAGE, DO NOT REPLY.

The following task has a new comment added:

FS#4154 - procd-ujail: makes dnsmasq refuse to answer dns queries
User who did this - william wortel (wwortel)

----------
additional info:
comparing in logread what is shown upon start of dnsmasq there is the difference :
with proc-ujail
dnsmasq[10121]: UBus support enabled: connected to system bus
dnsmasq[10121]: using only locally-known addresses for test
dnsmasq[10121]: using only locally-known addresses for onion
dnsmasq[10121]: using only locally-known addresses for localhost
dnsmasq[10121]: using only locally-known addresses for local
dnsmasq[10121]: using only locally-known addresses for invalid
dnsmasq[10121]: using only locally-known addresses for bind
dnsmasq[10121]: using only locally-known addresses for lan
dnsmasq[10121]: read /etc/hosts - 4 addresses
dnsmasq[10121]: read /tmp/hosts/dhcp.cfg01411c - 0 addresses

withhout procd-ujail:
dnsmasq[10121]: UBus support enabled: connected to system bus
dnsmasq[10121]: using only locally-known addresses for test
dnsmasq[10121]: using only locally-known addresses for onion
dnsmasq[10121]: using only locally-known addresses for localhost
dnsmasq[10121]: using only locally-known addresses for local
dnsmasq[10121]: using only locally-known addresses for invalid
dnsmasq[10121]: using only locally-known addresses for bind
dnsmasq[10121]: using only locally-known addresses for lan
dnsmasq[10121]: reading /tmp/resolv.conf.d/resolv.conf.auto
dnsmasq[10121]: using nameserver 192.168.1.1#53
dnsmasq[10121]: using only locally-known addresses for test
dnsmasq[10121]: using only locally-known addresses for onion
dnsmasq[10121]: using only locally-known addresses for localhost
dnsmasq[10121]: using only locally-known addresses for local
dnsmasq[10121]: using only locally-known addresses for invalid
dnsmasq[10121]: using only locally-known addresses for bind
dnsmasq[10121]: using only locally-known addresses for lan
dnsmasq[10121]: read /etc/hosts - 4 addresses
dnsmasq[10121]: read /tmp/hosts/dhcp.cfg01411c - 0 addresses

In both cases the unit does reach itself fqdn ddresses on the internet.
The jailed version however serves requests it receives with 'REFUSED'.
----------

More information can be found at the following URL:
https://bugs.openwrt.org/index.php?do=details&task_id=4154#comment10341

You are receiving this message because you have requested it from the Flyspray bugtracking system.  If you did not expect this message or don't want to receive mails in future, you can change your notification settings at the URL shown above.



More information about the openwrt-bugs mailing list