[FS#4154] procd-ujail: makes dnsmasq refuse to answer dns queries
OpenWrt Bugs
openwrt-bugs at lists.openwrt.org
Wed Nov 24 01:41:33 PST 2021
THIS IS AN AUTOMATED MESSAGE, DO NOT REPLY.
The following task has a new comment added:
FS#4154 - procd-ujail: makes dnsmasq refuse to answer dns queries
User who did this - william wortel (wwortel)
----------
additional info:
comparing in logread what is shown upon start of dnsmasq there is the difference :
with proc-ujail
dnsmasq[10121]: UBus support enabled: connected to system bus
dnsmasq[10121]: using only locally-known addresses for test
dnsmasq[10121]: using only locally-known addresses for onion
dnsmasq[10121]: using only locally-known addresses for localhost
dnsmasq[10121]: using only locally-known addresses for local
dnsmasq[10121]: using only locally-known addresses for invalid
dnsmasq[10121]: using only locally-known addresses for bind
dnsmasq[10121]: using only locally-known addresses for lan
dnsmasq[10121]: read /etc/hosts - 4 addresses
dnsmasq[10121]: read /tmp/hosts/dhcp.cfg01411c - 0 addresses
withhout procd-ujail:
dnsmasq[10121]: UBus support enabled: connected to system bus
dnsmasq[10121]: using only locally-known addresses for test
dnsmasq[10121]: using only locally-known addresses for onion
dnsmasq[10121]: using only locally-known addresses for localhost
dnsmasq[10121]: using only locally-known addresses for local
dnsmasq[10121]: using only locally-known addresses for invalid
dnsmasq[10121]: using only locally-known addresses for bind
dnsmasq[10121]: using only locally-known addresses for lan
dnsmasq[10121]: reading /tmp/resolv.conf.d/resolv.conf.auto
dnsmasq[10121]: using nameserver 192.168.1.1#53
dnsmasq[10121]: using only locally-known addresses for test
dnsmasq[10121]: using only locally-known addresses for onion
dnsmasq[10121]: using only locally-known addresses for localhost
dnsmasq[10121]: using only locally-known addresses for local
dnsmasq[10121]: using only locally-known addresses for invalid
dnsmasq[10121]: using only locally-known addresses for bind
dnsmasq[10121]: using only locally-known addresses for lan
dnsmasq[10121]: read /etc/hosts - 4 addresses
dnsmasq[10121]: read /tmp/hosts/dhcp.cfg01411c - 0 addresses
In both cases the unit does reach itself fqdn ddresses on the internet.
The jailed version however serves requests it receives with 'REFUSED'.
----------
More information can be found at the following URL:
https://bugs.openwrt.org/index.php?do=details&task_id=4154#comment10341
You are receiving this message because you have requested it from the Flyspray bugtracking system. If you did not expect this message or don't want to receive mails in future, you can change your notification settings at the URL shown above.
More information about the openwrt-bugs
mailing list