Re: sftp on chroot

To: Francisco Valladolid <ficovh%gmail.com@localhost>
Subject: Re: sftp on chroot
From: Jean-Yves Migeon <jeanyves.migeon%free.fr@localhost>
Date: Sun, 19 Sep 2010 18:26:48 +0200

On 19.09.2010 17:20, Francisco Valladolid wrote:
> On Sun, Sep 19, 2010 at 4:54 AM, Jean-Yves Migeon
> <jeanyves.migeon%free.fr@localhost> wrote:
>> On 19.09.2010 07:25, Francisco Valladolid wrote:
>> Try using
>>
>> ChrootDirectory %h
>>
>> If it does not work, check ssh logs (like /var/log/authlog); the cause
>> of this is likely to be in there.
>>
> Changing ChrootDirectory %h then checking the logs appear:
> Sep 20 05:25:57 samuel sshd[29022]: fatal: bad ownership or modes for
> chroot directory "/home/xxx"
> 
> I think it neccesary, chown root.root /home  ?

Yes, you can't do otherwise; if not, anyone could build up (depending on
configuration and mount points) his own system within the chroot, and
circumvent host's configuration.

Note that "chowning root:" the $HOME will prevent a user from creating
files at its root.

-- 
Jean-Yves Migeon
jeanyves.migeon%free.fr@localhost

Follow-Ups:
- Re: sftp on chroot
  - From: Francisco Valladolid

References:
- sftp on chroot
  - From: Francisco Valladolid
- Re: sftp on chroot
  - From: Jean-Yves Migeon
- Re: sftp on chroot
  - From: Francisco Valladolid

Prev by Date: Re: sftp on chroot
Next by Date: Re: Xorg woes and partial tips
Previous by Thread: Re: sftp on chroot
Next by Thread: Re: sftp on chroot
Indexes:

Home | Main Index | Thread Index | Old Index