|
Secure Shell
Can't run whoami(id -un) inside chroot jail using openssh native jail support Jul 23 2008 08:15PM D M (dm mlist gmail com) (2 replies) Re: Can't run whoami(id -un) inside chroot jail using openssh native jail support Jul 24 2008 07:41PM Vladimir Levijev (vladimir levijev gmail com) |
|
|
Privacy Statement |
Hash: SHA1
D M wrote:
> OS: RHEL5.2
> Openssh: 5.0p1 and now 5.1
>
> I have successfully setup a chroot jail using openssh's new native
> jail support and almost everything appears to be working
> (ls,cd,cat,uname,etc,ect). However I can't run any commands that
> identify the user.. such as ld -un whoami logname. They all fail with
> this result:
>
> #whoami
> whoami: cannot find name for user ID 503
> #id
> uid=503 gid=504 groups=504
> #id -un
> id: cannot find name for user ID 503
> 503
> #logname
> 503
I don't mean to ask really dumb questions, but can you:
cat /etc/passwd
cat /etc/group
grep -F ':503:' /etc/passwd
grep -F ':504:' /etc/group
from within the jail?
If not, you may have directory ownership/permissions problems. For
example, in a jail, make sure /etc o:g=root:root & perm=0551.
I know you said you have checked... but just adding another approach.
Jon Kibler
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC USA
o: 843-849-8214
c: 843-224-2494
s: 843-564-4224
My PGP Fingerprint is:
BAA2 1F2C 5543 5D25 4636 A392 515C 5045 CF39 4253
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAkiJDNQACgkQUVxQRc85QlPIgACgkdQ9F8Z954/Tv4//kb9JgtF3
GTwAoKBgmj3+JFCtyy3JaJKDgFnhQzCX
=KR5N
-----END PGP SIGNATURE-----
==================================================
Filtered by: TRUSTEM.COM's Email Filtering Service
http://www.trustem.com/
No Spam. No Viruses. Just Good Clean Email.
[ reply ]