[Jailkit-users] Re: Hi problem with using jail

[Olivier Sessink]

Maverick wrote:
[..]
>> could not read source file /etc/nsswitch.conf

jk_init.ini is designed for Debian, so many files are not copied on
openbsd because they are in other locations. I'm not sure if openbsd
even has an equivalent for nsswitch.conf ....

>> source file /usr/lib/sftp-server does not exist
>> source file /usr/libexec/openssh/sftp-server does not exist
>> source file /usr/lib/misc/sftp-server does not exist

this is quite an important one if you want sftp functionality

>> # jk_jailuser -m -j /home/jail jane
>> invalid shell, /home/jail/usr/sbin/jk_lsh does not exist

that is a serious problem, either copy jk_lsh into the jail or use a
different shell in the jail:
`jk_jailuser -m -j /home/jail -s /bin/sh jane`

>> # jk_cp /home/jail /usr/sbin/jk_lsh<- so i think that will copy the shell
>>
>> # jk_jailuser -m -j /home/jail jane
>>
>> # mkdir /home/jail/tmp
>>
>> # chmod a+rwx /home/jail/tmp
>>
>> # login
>> login: jane

jk_lsh forbids interactive logins, you should use a different shell if
you want interactive logins.
>> ---before 
>>      jane:*:1003:1003:jane:/home/jane:/usr/sbin/jk_lsh
>> ---after
>>      jane:*:1003:1003:jane:/home/jane:/bin/bash

I don't think openbsd has /bin/bash, if you have bash it is in
/usr/local/bin/bash

>>
>> --samething happened when i try login using jane
>>
>> --so i tried modify that file again to
>>      jane:*:1003:1003:jane:/home/jane:/bin/sh
>>
>> still the samething 

what is in your logs? did you enable logging in the jail (syslog -a
/home/jail/dev/log or with jk_socketd?)

gr.
        Olivier