|
| From: | Driedger,Norbert [Ontario] |
| Subject: | [Jailkit-users] "lost connection" in simple scp/sftp jail on RHEL 4 |
| Date: | Mon, 5 Mar 2007 16:16:18 -0500 |
|
Hello, Last year I had good success setting up jailed users with
jailkit-1.3 on a system running RHEL 3. Now I tried the same using jailkit-2.3
on RHEL 4 and it’s not working. I get the following in
/var/log/messages when I try to scp to the jailed user: Mar 5 15:30:03 pontiac2 sshd(pam_unix)[5442]: session
opened for user pds by (uid=0) Mar 5 15:30:03 pontiac2 jk_chrootsh[5443]: now
entering jail /home/sftproot for user pds (2039) Mar 5 20:30:03 pontiac2 jk_lsh[5443]: jk_lsh version
2.3, started Mar 5 20:30:03 pontiac2 jk_lsh[5443]: cannot find user
name for uid 2039: Success Mar 5 15:30:03 pontiac2 sshd(pam_unix)[5442]: session
closed for user pds The message on the client side is just “lost
connection”. To create the jail I ran the following as root: mkdir /home/sftproot jk_init /home/sftproot jk_lsh jk_init /home/sftproot sftp jk_init /home/sftproot scp jk_addjailuser –u 2039 /home/sftproot pds I actually have three jailed users, but the relevant lines
for pds in /home/sftproot/etc/jailkit/jk_lsh.ini are: [pds] paths= /usr/bin, /usr/libexec/openssh executables= /usr/bin/scp, /usr/libexec/openssh/sftp-server allow_word_expansion = 0 umask = 002 This feels like something simple, like a permissions problem
or something like that, but everything I’ve looked at seems OK. I
checked /home/sftproot/etc/passwd and it looks OK. Where is it looking
for a user name and not finding it? Norbert |
| [Prev in Thread] | Current Thread | [Next in Thread] |