Re: [Jailkit-users] Disconnects when the shell starts

[Mathematical]

Ok so how do I go about setting up my cvs server in a jail and have users
connect through SSH2 but when they connect they can only run cvs. No other
command will work. I followed the web sites tutorial but I guess I didnt do
it right and it says nothing about users connecting through SSH2. That is
what I'm trying to set up. Can this be done using jailkit?

Thank you for responding.

Mathematical



Hi-6 wrote:
> 
> I'm sure Oliver or others will correct me if I'm wrong
> but jk_lsh will never give you an interactive shell. 
> It is a very limited and restrictive shell only.
> 
> Outside the jail your etc passwd file will use the
> jk_chrootsh and inside the jail your etc passwd file
> will use the /bin/bash I believe.  I posted my two etc
> passwd files examples in the last thread have a look.
> 
> --- Mathematical <address@hidden>
> wrote:
> 
>> 
>> Ok so I am trying to set up a cvsjail for my cvs
>> server and I want the users
>> to authenticate by using their keys via SSH2. My cvs
>> server OS is Centos and
>> the client machines are shitdows xp machines. I have
>> correctly set up the
>> server and client SSH2 keys and for testing I'm
>> using PuTTY's plink on the
>> client machines. Here is the output that I get after
>> attempting to connect
>> to my jailed cvs server. 
>> 
>> [output]
>> C:\cvs_ssh>plink -v -v -P 1523 -ssh -2 -4 -i
>> id_dsa_private.ppk
>> address@hidden cvs
>> Looking up host "cvsserver" (IPv4)
>> Connecting to 192.168.1.200 port 1523
>> Server version: SSH-2.0-OpenSSH_3.9p1
>> We claim version: SSH-2.0-PuTTY_Release_0.59
>> Using SSH protocol version 2
>> Doing Diffie-Hellman group exchange
>> Doing Diffie-Hellman key exchange with hash SHA-1
>> Host key fingerprint is:
>> ssh-dss 1024
>> 30:45:9f:5e:ed:48:23:07:b5:65:d3:dd:0d:18:a1:05
>> Initialised AES-256 SDCTR client->server encryption
>> Initialised HMAC-SHA1 client->server MAC algorithm
>> Initialised AES-256 SDCTR server->client encryption
>> Initialised HMAC-SHA1 server->client MAC algorithm
>> Reading private key file "id_dsa_private.ppk"
>> Using username "cvsuser".
>> h3ll0...
>> 
>> Offered public key
>> Offer of public key accepted
>> Authenticating with public key "address@hidden"
>> Access granted
>> Opened channel for session
>> Started a shell/command
>> Server sent command exit status 3
>> Disconnected: All channels closed
>> [output]
>> 
>> I dont know what exit status 3 means but I also dont
>> see anything that is
>> difinitive in any of the logs on the cvs server. It
>> was connecting fine
>> before I tried jailkit, but I'm probably missing
>> something. My install
>> procedure was exactly the same as the cvs_only
>> tutorial on the web site. 
>> 
>> It seems to me that the jk_lsh is returning an exit
>> code of 3. Why? I have
>> no idea.
>> 
>> Please let me know if you need any additional
>> information or if you know the
>> solution to this problem.
>> Thank you.
>> -- 
>> View this message in context:
>>
> http://www.nabble.com/Disconnects-when-the-shell-starts-tp17238286p17238286.html
>> Sent from the jailkit-users mailing list archive at
>> Nabble.com.
>> 
>> 
>> 
>> _______________________________________________
>> Jailkit-users mailing list
>> address@hidden
>>
> http://lists.nongnu.org/mailman/listinfo/jailkit-users
>> 
> 
> 
> 
>       
> 
> 
> _______________________________________________
> Jailkit-users mailing list
> address@hidden
> http://lists.nongnu.org/mailman/listinfo/jailkit-users
> 
> 

-- 
View this message in context: 
http://www.nabble.com/Disconnects-when-the-shell-starts-tp17238286p17240929.html
Sent from the jailkit-users mailing list archive at Nabble.com.