[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Jailkit-users] sftp question

From: Paul Mitchell
Subject: [Jailkit-users] sftp question
Date: Fri, 6 Feb 2009 10:06:29 -0500 (EST)

I've just loaded jailkit onto a redhat 5 server, following the advice on http://olivier.sessink.nl/jailkit/howtos_chroot_shell.html (with additional help from the sftp&scp only page).

At the moment, I can ssh onto the server and it effectively jails the user. I can also scp a file to the server.

Unfortunately, this server will server as a "landing zone", or drop off box for users, predominantly running Windoze. I need to get sftp to work as well, but as yet, have been unsuccessful.

Here's what I've done:

1) modified /etc/ssh/sshd_config:

Subsystem       sftp    /home/jail/usr/libexec/openssh/sftp-server

2) modeified the executables line in both /etc/jailkit/.jk_lsh.ini and /home/jail/etc/jailkit/jk_lsh.ini:

 grep sftp /etc/jailkit/jk_lsh.ini
executables= /usr/libexec/openssh/sftp-server
address@hidden jailkit]# grep sftp /home/jail/etc/jailkit/jk_lsh.ini
executables= /usr/libexec/openssh/sftp-server

3) ran jk_init -v -j /home/jail sftp scp

4) jk_init -v -j /home/jail jk_lsh

The /var/log/messages file shows that I've connected:

Feb 6 10:06:02 <4.6> ELNDZ01F sshd[3887]: rexec line 41: Unsupported option KerberosGetAFSToken Feb 6 10:06:04 <4.6> ELNDZ01F sshd[3887]: Accepted password for pmitchel from 152.X.X>X port 34586 ssh2
Feb  6 10:06:04 <4.6> ELNDZ01F sshd[3891]: subsystem request for sftp
Feb 6 10:06:04 <4.6> ELNDZ01F jk_chrootsh[3892]: now entering jail /home/jail for user pmitchel (11782)

on the client side:

address@hidden's password:
debug2: we sent a password packet, wait for reply
debug1: Authentication succeeded (password).
debug2: fd 5 setting O_NONBLOCK
debug1: channel 0: new [client-session]
debug2: channel 0: send open
debug1: Entering interactive session.
debug2: callback start
debug2: client_session2_setup: id 0
debug1: Sending subsystem: sftp
debug2: channel 0: request subsystem confirm 1
debug2: fd 4 setting TCP_NODELAY
debug2: callback done
debug2: channel 0: open confirm rwindow 0 rmax 32768
debug2: channel 0: rcvd adjust 2097152
debug2: channel 0: rcvd eof
debug2: channel 0: output open -> drain
debug2: channel 0: obuf empty
debug2: channel 0: close_write
debug2: channel 0: output drain -> closed
debug1: client_input_channel_req: channel 0 rtype exit-status reply 0
debug2: channel 0: rcvd close
debug2: channel 0: close_read
debug2: channel 0: input open -> closed
debug2: channel 0: almost dead
debug2: channel 0: gc: notify user
debug2: channel 0: gc: user detached
debug2: channel 0: send close
debug2: channel 0: is dead
debug2: channel 0: garbage collecting
debug1: channel 0: free: client-session, nchannels 1
debug1: fd 0 clearing O_NONBLOCK
debug1: Transferred: stdin 0, stdout 0, stderr 0 bytes in 0.1 seconds
debug1: Bytes per second: stdin 0.0, stdout 0.0, stderr 0.0
debug1: Exit status 127
Connection closed

scp and ssh work, sftp dumps me right out. All help with this would be appreciated.


Paul Mitchell
        Paul Mitchell
        Enterprise Resource Planning Project
        email: address@hidden
        cubby: 4609 211 Manning Dr.
        phone: (919) 843-4146

reply via email to

[Prev in Thread] Current Thread [Next in Thread]