[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

sftp + chroot

Bonjour
Je suis sur debian Sarge, j'essai de faire du sftp chrooté mais en faisant un test de connexion avec un utilisateur de non "gestion", la connexeion est fermée 

xmach:/# sftp gestion@xmach
Connecting to xmach...
Password:
Connection closed

et j'ai dans le syslog

Nov 27 16:25:41 xmach rssh[3642]: setting log facility to LOG_USER
Nov 27 16:25:41 xmach rssh[3642]: allowing sftp to all users
Nov 27 16:25:41 xmach rssh[3642]: setting umask to 022
Nov 27 16:25:41 xmach rssh[3642]: chrooting all users to /home
Nov 27 16:25:41 xmach rssh[3642]: chroot cmd line: /usr/lib/rssh/rssh_chroot_helper 2 "/usr/lib/sftp-server" Nov 27 16:25:41 xmach rssh_chroot_helper[3642]: new session for gestion, UID=1001 Nov 27 16:25:41 xmach rssh_chroot_helper[3642]: chroot() failed, 2: Operation not permitted
j'ai copié toutes les librairies dans la cage /home et bien vérifié les droits, une idée? 

xmach:/home# ls -alR
drwxr-xr-x   3 root     root      4096 2006-11-27 14:44 lib
drwxr-xr-x   4 root     root      4096 2006-11-16 18:21 usr
./lib:
-rwxr-xr-x  1 root root  90248 2006-11-27 14:44 ld-2.3.2.so
-rwxr-xr-x  1 root root  90248 2006-11-27 13:08 ld-linux.so.2
drwxr-xr-x  2 root root   4096 2006-11-27 14:51 tls
./lib/tls:
-rwxr-xr-x  1 root root 1254660 2006-11-27 14:47 libc-2.3.2.so
-rw-r--r--  1 root root   18876 2006-11-27 14:48 libcrypt-2.3.2.so
-rw-r--r--  1 root root   18876 2006-11-27 13:04 libcrypt.so.1
-rwxr-xr-x  1 root root 1254660 2006-11-27 13:05 libc.so.6
-rw-r--r--  1 root root    9872 2006-11-27 14:46 libdl-2.3.2.so
-rw-r--r--  1 root root    9872 2006-11-27 13:07 libdl.so.2
-rw-r--r--  1 root root   73304 2006-11-27 14:49 libnsl-2.3.2.so
-rw-r--r--  1 root root   73304 2006-11-17 13:47 libnsl.so.1
-rw-r--r--  1 root root   64924 2006-11-27 12:59 libresolv.so.2
-rw-r--r--  1 root root    7828 2006-11-27 14:51 libutil-2.3.2.so
-rw-r--r--  1 root root    7828 2006-11-27 14:52 libutil.so.1
./usr:
drwxr-xr-x  2 root root  4096 2006-11-16 18:18 bin
drwxr-xr-x  4 root root  4096 2006-11-27 14:50 lib
./usr/bin:
-rwxr-xr-x  1 root root 20048 2006-11-16 18:18 rssh
-rwxr-xr-x  1 root root 33580 2006-11-27 15:39 scp
-rwxr-xr-x  1 root root 61196 2006-11-27 12:00 sftp
./usr/lib:
drwxr-sr-x  3 root staff  4096 2006-11-16 19:24 i686
-rw-r--r--  1 root staff 67468 2006-11-16 18:50 libz.so.1
-rw-r--r--  1 root root  67468 2006-11-27 14:50 libz.so.1.2.2
drwxr-xr-x  2 root root   4096 2006-11-27 11:34 rssh
-rwxr-xr-x  1 root root  27992 2006-11-27 12:02 sftp-server
./usr/lib/i686/cmov:
-rw-r--r--  1 root staff 1029704 2006-11-16 18:50 libcrypto.so.0.9.7
./usr/lib/rssh:
-rwsr-xr-x  1 root root 19564 2006-11-27 12:03 rssh_chroot_helper

_________________________________________________________________
MSN Messenger: appels gratuits de PC à PC ! http://www.msn.fr/newhotmail/Default.asp?Ath=f
Reply to: