RE: [Jailkit-users] help , Keith

[RodgerK]

I thought that your jk_lsh was like an alternative shell. What I want is
outside users to be able to scp, sftp, or login in to their jailed
directories on this box in our dmz and not see anything but their home
dirs. You are correct, I was doing 
Ssh address@hidden, I don't get why this is not ok, And I've been
Doing **ix for 20 years so by interactive shells you just mean sh ksh
bash etc?, I've never actually called them interactive, but if I think
about it I guess they are interactive. What am I missing?

-----Original Message-----
From: address@hidden
[mailto:address@hidden On Behalf Of
Olivier Sessink
Sent: Tuesday, September 12, 2006 5:23 PM
To: address@hidden
Subject: Re: [Jailkit-users] help , Keith

Stephen Tallowitz wrote:
> Hello Keith,
> 
> it seems to me from your comments and the log file that you're trying
to log into your account - using an interactive shell. You are typing
something like
> ssh address@hidden
> if I'm guessing correctly. This will not work, because jk_lsh is not
an interactive shell. There are two things you could do:
> 
> 1. Select bash as the login shell in the jail (bypassing jk_lsh). Put
/bin/bash instead of /usr/sbin/jk_lsh into /home/jail/etc/passwd
> 2. Supply bash as the command to execute to the ssh command:
>       ssh address@hidden 'bash'
> If you chose option (2), don't forget to put /bin/bash in
/home/jail/etc/jailkit/jk_lsh.ini

2 is a bit of a funny alternative, jk_lsh is designed as alternative for
bash if you want to disallow interactive shells. So if you want an
interactive shell just do 1 and don't use jk_lsh.

regards,
        Olivier


_______________________________________________
Jailkit-users mailing list
address@hidden
http://lists.nongnu.org/mailman/listinfo/jailkit-users