[SGVLUG] OpenSSH sftp and rssh
James Neff
jneff at tethyshealth.com
Mon Mar 27 06:44:16 PST 2006
Greetings fellow LUGers,
I'm trying to get my sFTP setup and need some assistance.
I am trying to accomplish these two things:
1) sFTP restricts the user to their home directory.
2) User accounts only allow for sFTP login, no shell access.
I've got OpenSSH 4.0p1 installed and working. I can login just fine
using FileZilla as my sFTP client.
I tried following these instructions
http://freshmeat.net/articles/view/1576/ to restrict the user to the
/home directory but when I try to open a connection my client returns
this error: "Fatal: unable to initialise SFTP: could not connect".
Here is the relevant entries in my /var/log/message file:
Mar 24 09:23:26 ftp sshd: startup succeeded
Mar 24 09:23:32 ftp sshd[1843]: Accepted password for jdoe from
::ffff:192.168.2.8 port 2460 ssh2
Mar 24 09:23:38 ftp sshd[1849]: subsystem request for sftp
Mar 24 09:23:38 ftp rssh[1850]: setting log facility to LOG_USER
Mar 24 09:23:38 ftp rssh[1850]: allowing sftp to all users
Mar 24 09:23:38 ftp rssh[1850]: setting umask to 022
Mar 24 09:23:38 ftp rssh[1850]: chrooting all users to /home
Mar 24 09:23:38 ftp rssh[1850]: chroot cmd line:
/usr/libexec/rssh_chroot_helper 3 "/usr/lib/ssh/sftp-server"
... and then it stops.
I've tried the other route to patch OpenSSH with chroot but I can't find
the step-by-step instructions to do this. Is there a complied RPM out
there that has the chroot patch already included?
I'm using Mandriva Linux release 2006.0 (Cooker) for i586.
Thanks in advance,
James
More information about the SGVLUG
mailing list