Thread: sftp-server No user found for uid x
Brought to you by:
xystrus
From:
<ro...@al...> - 2007-06-27 09:00:26
|
Hi! Now it is for days trying to have rssh with chroot. I read all the =20 mail posts, forums, faq-s, but I still have a (not exactly rssh) problem. It is about sftp-server in the jail. I am trying it on fedora 5. My problem is that sftp-server couldn't find the user: Jun 26 20:39:39 elod rssh[5728]: allowing sftp to all users Jun 26 20:39:39 elod rssh[5728]: setting umask to 022 Jun 26 20:39:39 elod rssh[5728]: chrooting all users to /www/chroot Jun 26 20:39:39 elod rssh[5728]: chroot cmd line: =20 /usr/local/libexec/rssh_chroot_helper 2 "/usr/local/openssh/libexec/sftp-server" Jun 26 18:39:39 elod rssh_chroot_helper[5728]: new session for myuser, =20 UID=3D6653 Jun 26 18:39:39 elod rssh_chroot_helper[5728]: user's home dir is /home/myus= er Jun 26 18:39:39 elod rssh_chroot_helper[5728]: couldn't find =20 /home/myuser in chroot jail Jun 26 18:39:39 elod rssh_chroot_helper[5728]: chrooted to /www/chroot Jun 26 18:39:39 elod rssh_chroot_helper[5728]: changing working =20 directory to / (inside jail) Jun 26 18:39:39 elod sftp-server[5728]: fatal: No user found for uid 6653 with scp, it says: unknown user 6653 I have the /etc/passwd, /etc/group in the jail. Without chroot, it works. I ldd-d the files, copied all the required files to jail, created =20 /jail/dev/null etc... but still no luck ... Could someone help me out? Thanx Roti |
From: Matthijs K. <m.k...@st...> - 2007-06-27 09:53:02
|
Hey, I've been having similar problems. > with scp, it says: unknown user 6653 > > I have the /etc/passwd, /etc/group in the jail. AFAIK having passwd should work to resolve the user id. Are you sure that a user with that id is in the passed file? Is it readable by all users? In my situation I was importing users through nss_winbind, which is non-trivial to import into the jail (no simple passwd file). I created a patch for scp, which prevents scp from looking up the user, it really doesn't use it anyway. So far, the patch doesn't seem to have been considered for inclusion (though it's quite trivial). Anyway, the patch is here: http://bugzilla.mindrot.org/show_bug.cgi?id=1235 It is weird that sftp-server breaks for you, for it works fine for me (without any passwd file or nss lookup in the jail). Might be that I'm running FreeBSD, but AFAIK that's openssh as well. Gr. Matthijs |
From: Derek M. <co...@pi...> - 2007-06-27 23:34:56
|
On Wed, Jun 27, 2007 at 11:00:20AM +0200, Hrotk=F3 G=E1bor wrote: > I am trying it on fedora 5. > My problem is that sftp-server couldn't find the user: This is not a problem with rssh... it's an OpenSSH config problem. But let's see: > Jun 26 18:39:39 elod rssh_chroot_helper[5728]: new session for myuser, = =20 > UID=3D6653 This tells us that rssh can identify the user. So again, it's not an rssh problem. > Jun 26 18:39:39 elod sftp-server[5728]: fatal: No user found for uid 6653 > with scp, it says: unknown user 6653 My only guess is that sshd is configured to use PAM, and you didn't copy the PAM libraries and modules into the jail. Try making sure that OpenSSH is not using PAM. If that's not it, I really have no idea. --=20 Derek D. Martin http://www.pizzashack.org/ GPG Key ID: 0x81CFE75D |
From: <ro...@al...> - 2007-06-28 07:30:23
|
Thanx for this, it worked! the *nss* libs helped in the lib64 dir > Hey, > > Try copying *nss* from wherever your nss libraries are (/usr/lib?) > to the same location in your jail. > > If it works start removing them one at a time and re-testing until > you find out which ones are needed. > > Worked for me on Solaris. > -- > James Sewell > Technical Team Lead > > http://www.ardec.com.au |