[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Jailkit-users] sftp question
|
From: |
Paul Mitchell |
|
Subject: |
[Jailkit-users] sftp question |
|
Date: |
Fri, 6 Feb 2009 10:06:29 -0500 (EST) |
Hello,
I've just loaded jailkit onto a redhat 5 server, following the advice
on http://olivier.sessink.nl/jailkit/howtos_chroot_shell.html (with
additional help from the sftp&scp only page).
At the moment, I can ssh onto the server and it effectively jails the
user. I can also scp a file to the server.
Unfortunately, this server will server as a "landing zone", or drop off
box for users, predominantly running Windoze. I need to get sftp to work
as well, but as yet, have been unsuccessful.
Here's what I've done:
1) modified /etc/ssh/sshd_config:
Subsystem sftp /home/jail/usr/libexec/openssh/sftp-server
2) modeified the executables line in both /etc/jailkit/.jk_lsh.ini and
/home/jail/etc/jailkit/jk_lsh.ini:
grep sftp /etc/jailkit/jk_lsh.ini
executables= /usr/libexec/openssh/sftp-server
address@hidden jailkit]# grep sftp /home/jail/etc/jailkit/jk_lsh.ini
executables= /usr/libexec/openssh/sftp-server
3) ran jk_init -v -j /home/jail sftp scp
4) jk_init -v -j /home/jail jk_lsh
The /var/log/messages file shows that I've connected:
Feb 6 10:06:02 <4.6> ELNDZ01F sshd[3887]: rexec line 41: Unsupported
option KerberosGetAFSToken
Feb 6 10:06:04 <4.6> ELNDZ01F sshd[3887]: Accepted password for pmitchel
from 152.X.X>X port 34586 ssh2
Feb 6 10:06:04 <4.6> ELNDZ01F sshd[3891]: subsystem request for sftp
Feb 6 10:06:04 <4.6> ELNDZ01F jk_chrootsh[3892]: now entering jail
/home/jail for user pmitchel (11782)
on the client side:
address@hidden's password:
debug2: we sent a password packet, wait for reply
debug1: Authentication succeeded (password).
debug2: fd 5 setting O_NONBLOCK
debug1: channel 0: new [client-session]
debug2: channel 0: send open
debug1: Entering interactive session.
debug2: callback start
debug2: client_session2_setup: id 0
debug1: Sending subsystem: sftp
debug2: channel 0: request subsystem confirm 1
debug2: fd 4 setting TCP_NODELAY
debug2: callback done
debug2: channel 0: open confirm rwindow 0 rmax 32768
debug2: channel 0: rcvd adjust 2097152
debug2: channel 0: rcvd eof
debug2: channel 0: output open -> drain
debug2: channel 0: obuf empty
debug2: channel 0: close_write
debug2: channel 0: output drain -> closed
debug1: client_input_channel_req: channel 0 rtype exit-status reply 0
debug2: channel 0: rcvd close
debug2: channel 0: close_read
debug2: channel 0: input open -> closed
debug2: channel 0: almost dead
debug2: channel 0: gc: notify user
debug2: channel 0: gc: user detached
debug2: channel 0: send close
debug2: channel 0: is dead
debug2: channel 0: garbage collecting
debug1: channel 0: free: client-session, nchannels 1
debug1: fd 0 clearing O_NONBLOCK
debug1: Transferred: stdin 0, stdout 0, stderr 0 bytes in 0.1 seconds
debug1: Bytes per second: stdin 0.0, stdout 0.0, stderr 0.0
debug1: Exit status 127
Connection closed
scp and ssh work, sftp dumps me right out. All help with this would be
appreciated.
Thanks,
Paul Mitchell
==============================================================================
Paul Mitchell
Enterprise Resource Planning Project
email: address@hidden
cubby: 4609 211 Manning Dr.
phone: (919) 843-4146
==============================================================================
- [Jailkit-users] sftp question,
Paul Mitchell <=