[stunnel-users] jailed stunnel can't find DNS
Michal Trojnara
Michal.Trojnara at mobi-com.net
Mon Nov 8 09:18:05 CET 2004
"John Conover" <conover at rahul.net> wrote:
> chroot = /usr/local/stunnel/var/run/
[cut]
> delay = yes
[cut]
> 2004.11.07 16:49:10 LOG3[3794:1025]: Failed to resolve hostname
> 'abc.wxyz.net'
[cut]
> Removing chroot in stunnel.conf fixes the problem, but its no longer
> jailed.
>
> Hints?
Yes. You have several options:
1. As you noticed you can turn off chroot.
2. You can turn off delayed resolver (to resolve hosts at startup, before
chroot).
3. You can create the files/devices your resolver library needs inside the
chroot jail.
strace is your friend: http://sourceforge.net/projects/strace/
4. You can use IP address as "connect" parameter instead of domain name.
8-)
Best regards,
Mike
More information about the stunnel-users
mailing list