LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 12-22-2016, 11:42 PM   #1
avlsubbarao
LQ Newbie
 
Registered: Dec 2008
Posts: 2

Rep: Reputation: 0
chroot jail not working in vsftp


Hi,

We have enabled chroot and created file chroot_list.
in chroot_list contains 50 users chroot is working after that chroot not working right now chroot_list contains 5000 users
is their any limit is their?

Red Hat Enterprise Linux Server release 5.5 (Tikanga)
vsftpd: version 2.0.5
chroot_list_enable=YES
chroot_list_file=/etc/vsftpd/chroot_list

Regards,
AVL
 
Old 12-27-2016, 01:47 PM   #2
TB0ne
LQ Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 23,815

Rep: Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974
Quote:
Originally Posted by avlsubbarao View Post
Hi,
We have enabled chroot and created file chroot_list. in chroot_list contains 50 users chroot is working after that chroot not working right now chroot_list contains 5000 users is their any limit is their?
Your question is hard to understand, but I think you're saying chroot works fine for 50 users, but not 5,000? If so...why? I suggest you read the man page of the vsftpd.conf file:
https://security.appspot.com/vsftpd/vsftpd_conf.html

...and pay particular attention to this:
Quote:
Originally Posted by VSFTPD Docs
chroot_list_file
The option is the name of a file containing a list of local users which will be placed in a chroot() jail in their home directory. This option is only relevant if the option chroot_list_enable is enabled. If the option chroot_local_user is enabled, then the list file becomes a list of users to NOT place in a chroot() jail.
Would seem to be far easier, with 5,000 users, to put a list of folks *NOT* to chroot, versus keeping up with that many.
Quote:
Red Hat Enterprise Linux Server release 5.5 (Tikanga)
vsftpd: version 2.0.5
chroot_list_enable=YES
chroot_list_file=/etc/vsftpd/chroot_list
And RHEL 5.5 is VERY old, and unsupported totally. You are MANY versions/patches/bugfixes behind, and the latest vsftpd is 3.0.3. Trying to implement 'security' when you are so far behind is pointless. Have you contacted RHEL support so you can PAY FOR RHEL, and get upgraded and current?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
How to configure VSFTP chroot or jail users on centOS-7 ashkarstudy Linux - Server 1 10-23-2014 02:48 AM
Setup of CHROOT (jail) not working (RHEL 6.1) leepic Linux - Enterprise 1 01-04-2012 10:28 AM
VSFTP - chroot jail implications? OstermanA Linux - Security 8 01-22-2011 01:34 PM
[SOLVED] chroot jail problem: 'empty' jail MatrixS_Master Linux - Security 4 03-27-2010 06:25 AM
chroot not working for vsftp anymore noisybastard Linux - Newbie 5 11-26-2003 10:31 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 08:20 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration