|
sftp + chroot ... almost
I've almost got a chroot'd jail for openssh's sftp, but there's one thing it's not doing for me. It won't change the root to the user's home directory. It does do the 'change directory' but doesn't stay locked in it.
Some details. Openssh-3.7.1p2 and the openssh-chroot-patch from chrootssh.sourceforge.net. Testing on YDL-2.3. I want to allow user the ability to their website content throught sftp and not ftp. ProFTPd allows me to do it, but I want it with sftp. I've got the chroot jail setup with all the libraries and binarys and I am able to connect and initially land in the home directory specified in /etc/passwd. However, when I do a "cd /" I should stay in my home directory, but instead I get taken down one level to where the chroot files actually are. The entry in my /etc/passwd file looks like this: bill:x:504:505::/usr/local/apache/htdocs/./bill/:/bin/bash htdocs/ is where I have usr/, lib/, etc/, bin/, dev/. Is there something I'm missing as to why the user bill isn't chrooted to /usr/local/apache/htdocs/bill ? |
See if setting the shell to "/bin/sh" works, for some reason the doc says chrooting ssh wants that, as opposed to using "chroot" directly, which wants /bin/bash.
|
| All times are GMT -5. The time now is 03:31 AM. |