[Jailkit-users] sftp problem

[Jared Hardy]

I am trying to jail a single user to use sftp only on a SLES 9 AMD-64
server. I keep on getting the error "abort, failed to get user
information in the jail for user ID 1069: No such file or directory,
check /share/sftproot/etc/passwd". Here are my passwd files lines for
this user:

# cat /etc/passwd | grep jailtest
jailtest:x:1234:100:jailtest:/share/sftproot/./home/jailtest:/usr/sbin/jk_chrootsh

# cat /share/sftproot/etc/passwd | grep jailtest
jailtest:x:1234:100:jailtest:/home/jailtest:/usr/sbin/jk_lsh

All the directories leading up to /share/sftproot/etc/passwd are "chmod
a+x", which I did based on an earlier message in the archives. The
/share/sftproot/home/jailtest directory is owned by 1234:100. The
standard jk_init paths are changed from /usr/lib to /usr/lib64 for this
distribution:

# cat /share/sftproot/etc/jailkit/jk_lsh.ini
## example for a user
[jailtest]
paths= /usr/bin, /usr/lib64/ssh
executables= /usr/bin/scp, /usr/lib64/ssh/sftp-server
#allow_word_expansion = 0
#umask = 002
##example for a group, there should be only 1 space inbetween the words!
#[group users]
#paths = /usr/bin
#executables = /usr/bin/cvs
#allow_word_expansion = 0

And here is what I get when I try to sftp to localhost ...

# sftp address@hidden
Connecting to localhost...
Password:
Connection closed

# tail /var/log/messages
Apr 20 15:55:55 myserver sshd[3909]: Accepted keyboard-interactive/pam
for jailtest from 127.0.0.1 port 16681 ssh2
Apr 20 15:55:55 myserver sshd[3912]: subsystem request for sftp
Apr 20 15:55:55 myserver jk_chrootsh[3913]: now entering jail
/share/sftproot for user jailtest (1234)
Apr 20 15:55:55 myserver jk_chrootsh[3913]: abort, failed to get user
information in the jail for user ID 1234: No such file or directory,
check /share/sftproot/etc/passwd