user jail attempted to execute forbidden commands - command: /usr /lib/ssh/sftp-server
Brought to you by:
xystrus
From: Werner K. <Wer...@ce...> - 2005-08-01 15:36:49
|
when trying to get "rssh in an chroot jail" now for 3 days, having read all documentations, man pages and a lot of discussion - now I don't have any idea how to get final success. I think my chroot-jail looks rather fine as strace doesn't report unresolved lib-calls. sftp-client performs authentication dialog (DSA) and session is immediately closed again without any prompt. Content of rssh.conf: allowsftp umask = 022 chrootpath="/home/jail" /etc/passwd: jail:x:1000:1001:chrootjail:/home/jail:/usr/local/bin/rssh content of /var/log/messages: Aug 1 17:38:54 hrvadbx001 sshd[21044]: Server listening on :: port 22. Aug 1 17:39:17 hrvadbx001 sshd[21045]: Accepted publickey for jail from ::ffff:"ccc.ccc.ccc.ccc" port "ppppp" ssh2 Aug 1 17:39:17 hrvadbx001 sshd[21047]: subsystem request for sftp Aug 1 17:39:17 hrvadbx001 rssh[21048]: setting log facility to LOG_USER Aug 1 17:39:17 hrvadbx001 rssh[21048]: allowing sftp to all users Aug 1 17:39:17 hrvadbx001 rssh[21048]: setting umask to 022 Aug 1 17:39:17 hrvadbx001 rssh[21048]: chrooting all users to /home/jail Aug 1 17:39:17 hrvadbx001 rssh[21048]: user jail attempted to execute forbidden commands Aug 1 17:39:17 hrvadbx001 rssh[21048]: command: /usr/lib/ssh/sftp-server ./configure of rssh was made --with-sftp-server=/usr/lib/ssh where it actually resides. Even sshd_config points to the right entry. In this discussion-forum I read 2 or 3 times the same problem. But I did not really understand what the solution could be. I use SuSE- SLES-9, OpenSSH-3.8 and rssh-2.2.3 Is there anybody who could give me an advise how to continue. |