[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [off-topic?] Chrooting ssh/telnet users?



On Mon, Oct 29, 2001 at 09:48:00AM +1300, Stephen Andrew wrote:
> There is a chroot patch for the potato openssh-1.2.3 source in /contrib
> however it appears to be broken.
> 
> I have created a modified diff for the Debian package source which will
> apply the patch correctly and build an ssh_1.2.3chroot1-9.3 package.
----------------------------------Snip-----------------------------------

There's the same problem in all versions of openssh from debian, you
must apply the chroot patch by hand (maybe because debian openssh is
patched) I've got also a version of openssh 2.9p2-6 from sid recompiled
for potato with the chroot support...it works for me (with openssl 095a
recompiled by jones???)
(I do also some little modifications: no suid by default in debconf and
no permitrootlogin by default.

deb http://people.easter-eggs.org/~manu/debian/ ssh/


What about a package ssh-chroot in debian? I think the pam module is
more interesting as it can be aplied to other thinks, but I tried it and
was unable to make it working (I'm not a pam master!!).

-- 
Easter-eggs                                Spécialiste GNU/Linux
44-46 rue de l'Ouest  -  75014 Paris   -   France -  Métro Gaité
Phone: +33 (0) 1 43 35 00 37    -     Fax: +33 (0) 1 41 35 00 76
mailto:elacour@easter-eggs.com   -    http://www.easter-eggs.com

Attachment: pgpMZ2KpF0zFg.pgp
Description: PGP signature


Reply to: