Displaying 20 results from an estimated 3317 matches for "chrooted".
2017 Oct 17
1
[PATCH] daemon: simplify usage of Chroot.f
Rely on currying, and avoid extra helper functions.
No behaviour changes.
---
daemon/inspect_fs_unix.ml | 20 ++++++++++----------
daemon/inspect_fs_windows.ml | 2 +-
2 files changed, 11 insertions(+), 11 deletions(-)
diff --git a/daemon/inspect_fs_unix.ml b/daemon/inspect_fs_unix.ml
index 59e26a05e..3ad119306 100644
--- a/daemon/inspect_fs_unix.ml
+++ b/daemon/inspect_fs_unix.ml
@@ -68,7
2001 Jan 03
1
chroot.diff
Hi there, everyone;
I've had a few requests for an updated version of my chroot patch. (the
version found in contrib is outdated)
So, here it goes, updated to 2.3.0p1; "chroot.diff" is a plain diff for
session.c (apply, compile and go). "chroot+configure.diff" is the same
patch, plus an option to "configure" for enabling/disabling chroot support
(./configure
2011 Jul 14
0
Chroot issue with username to uid
I'm setting up a chroot environment on a shared web server to allow users to
modify their web roots within a secure chroot, but am having a problem.
Right now when I log in with test accounts I get this...
Last login: Thu Jul 14 09:04:14 2011 from ....
id: cannot find name for group ID 507
id: cannot find name for user ID 506
[I have no name!@webserver ~]$
I've verified that the UID /
2002 Apr 12
3
Chrooted sftp, did you getting it working?
Le Jeudi 11 Avril 2002 21:09, m.ibarra at cdcixis-na.com a ?crit :
> I was curious to know if you had any luck in getting openssh's sftp
> server properly configured to allow chrooted sftp logins? I have had
> no success and need something quickly.
Dear Mike,
Unfortunately, I did not succeed to have it work.
I got in contact with James Dennis <jdennis at law.harvard.edu>, who send me a
chroot patch. I applied the patch and did not succeed to log into a chrooted
acc...
2007 Jul 17
2
kern.chroot_allow_open_directories
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
The chroot(2) man page describes a sysctl called
'kern.chroot_allow_open_directories' which controls whether a process
can chroot() and is already subject to the chroot() syscall.
It seems that this sysctl can be trivially changed from within a
chroot'd process (ie: if that process has superuser privileges).
Is this sysctl meant to
2001 Aug 31
3
handling of 'use chroot'
At the moment, if you start an rsyncd that's not running as root using
default settings it will have some trouble. rsyncd tries to use
chroot by default, but this will always fail if it's not started by
root. It does emit an error message in this case, but I wonder if
some people find this a bit confusing until they discover the setting.
I have in the past.
It might be better that if
2009 Dec 28
0
cannot receive new filesystem stream: invalid backup stream
I have two snv_126 systems. I''m trying to zfs send a recursive snapshot
from one system to another:
# zfs send -v -R tww/opt/chroots at backup-20091225 |\
ssh backupserver "zfs receive -F -d -u -v tww"
...
found clone origin tww/opt/chroots/ab at ab-1.0
receiving incremental stream of tww/opt/chroots/ab-1.0 at backup-20091225 into tww/opt/chroots/ab-1.0 at
2015 Sep 10
2
bind chroot, bind mounts and selinux
Hi All,
I'm migrating a CentOS 6 bind instance (chrooted) to a CentOS 7 box and am curious of people's
opinions on chrooting vs selinux as a way of securing bind.
The bind-chroot on CentOS 7 also comes with a script (/usr/libexec/setup-named-chroot.sh) that sets
up the much maligned systemd and, through bind mounts, creates and extra level of chroot...
2013 Feb 15
2
bind-chroot rpm only builds chroot tree?
...nd the one in the bind rpm is without this line).
Just interesting that if you chroot, you are expected to know that
everything needs to be placed there. And they leave the /etc/named.conf
there untouched. Seems they should remove this or make it a symlink?
And what about /etc/rndc.key? your chrooted bind uses the
/var/named/chroot/etc/rndc.key and rndc uses the /etc/rndc.key, or so it
seems, so your rndc.key is left unprotected outside of the chroot jail?
Am I missing something in the rndc setup with chrooted bind? I am not
seeing any special instructions on this in the Redhat documentat...
2017 Jan 09
2
Trouble removing files in chrooted sftp
Hi,
I have trouble setting up chrooted SFTP for our user.
I got the basic SFTP chroot working, user is chrooted to its home
directory, I've added /home/userb/etc directory with dummy passwd, group
and localtime files.
The problem is that instead of only accessing its own files, I need the
user to be able to remove another users fil...
2003 Aug 16
0
sftp-server (secure) chroot patch?
...orks for me though). Please reply with the correct code.
Thanks to Ben Lindstrom for helping me with this...
I use this patch together with rssh, and I put the sftp-binary in the rssh chroot /ftproot/usr/local/libexec and its called by rssh-chroot-helper. When a user logins with sftp he will get chrooted to /ftproot/home/user. I shutdown access to scp and ssh, only sftp is allowed, so the user will never see the files in /ftproot
To apply this patch on OpenSSH 3.6.1p2:
- patch -p0 < sftp-server.patch
- edit Makefile and include uidswap.o in sftp-server
- make sftp-server
- copy sftp-server into...
2003 Nov 13
3
an unwanted chroot() call
Hello,
I am trying to run rsync under my own userid on a high-numbered port.
The problem is that, when I use the --daemon option, I get an error
saying that a chroot() call failed.
My config file does *not* have any chroot call in it.
How can I avoid a chroot() invocation when running as a normal non-root
user?
Thanks in advance for any advice!
--
Daniel Ortmann, LSI Logic, 3425 40th Av NW,
1998 Jul 14
2
Re: Chrooting bind 8.1.2 under debian 2.0
On Tue, 14 Jul 1998, cfb wrote:
> The main problem seems to be with the way that debian starts bind using
> the script /etc/init.d/bind. I thought it would be really neat to just
> change the #!/bin/sh at the top of the script to something like :
> #!/usr/sbin/chroot /chroot-dns/ /bin/sh
> or
> #!/usr/sbin/chroot /chroot-dns/ /chroot-dns/bin/sh
try changing
2009 Aug 14
4
About sftp chroot dev!
I have an question, why you guys do not let chroot be owned by the user ?
It would be a good way to chroot the users
Cause like
I want to chroot user in /chroot/%u
But they can not write in this directory... i need to set another dir to
them to be able to write, even when /chroot/ is onewd by root
i want to be able to do this
user1 be able to write in /chroot/user1 but not able to go
2002 Jun 11
3
Possible UID/GID bug in chrooted shells?
I'm stuck on a problem with rsync...
We've got a chrooted shell with rsync and all the needed libs inside (and not
much else).
We're using rsync over ssh to send the files into this chrooted session. The
rsync binary in the chrooted session is SUID root so that it can create the
files with the correct UID/GID. When the following is run, it create...
2009 Dec 30
3
chroot problem.
First, I'm trying to following along on a document on "SecurityFocus"
on "Securing MySQL: step-by-step".
I'm on step 3.8 "Test the configuration". I have my CHROOT directory
structure setup and the chrootuid is failing (haven't figured that one
out, yet). So, I simply tried a 'chroot /chroot/mysql' and got:
chroot: cannot run command
2006 Aug 24
2
Postfix chroot jail - Centos 4
As I can seen, there is the bind-chroot glue package, but is there a
postfix-chroot.rpm glue ? I have looked for it, but I think there is not.
If there is not, what is your opinion about creating one ?
Thanks
--
Vilela
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
2006 Dec 23
3
How to start installing a Quad-Devel-Station?
Hello Xen-Users,
I am running a Debian GNU/Linux Devel-Station (P2/366 MHz, 512MByte)
and use currently chroots which give some problems from time to time.
I have following configuration:
----8<------------------------------------------------------------------
/dev/sda1 / 7700 GByte # Master System
/dev/sda2 swap 256 MByte # Master System
/dev/sda3 /var 512 MByte # Master System
2013 Aug 01
2
Alert Email
Hi All, thanks for the replies so far..
I will try to address as many of them as I can in a group reply:
Xabier Oneca -- xOneca wrote:
Just to confirm, are you sure the scripts' path in config file is
relative to the chroot directory?
- Yes, I am working under the new path names in my xml file. The Web,
Admin, and Log directories all work as planned. The shell files are in
the same
2012 Jun 07
1
While using internal sftp server, need to access files outside chroot
Hi,
I need to make a custom code change in sftp-server module to copy the received file outside the chroot-setup. I am trying to chroot repeatedly to get physical root directory and the copy received file to a directory outside chrooted directory.
The children processes are owned by the sftp-user and so, sftp child process does not have permission to escape out of chroot.
Is there a simple way where I can spawn child processes for sftp so that these processes are owned by root.
I tried to change user to root, but user root is n...