10 More Discussions You Might Find Interesting
1. Red Hat
Hi,
Just installed BIND on rhel6 as a primary new DNS server and all went well, digging and resolving as it should.
However, all zone files are listed in the /var/named dir as well as the /var/named/chroot/var/named. Although no dynamic links are shown, they are. This doesn't seem secure to me,... (2 Replies)
Discussion started by: Duffs22
2 Replies
2. UNIX for Dummies Questions & Answers
Hi all,
I have two doms on my machine. I boot my machine from an rfs in one dom1 and mount the other rfs in the other dom2 at /media. Now I wanted to restrict access of users on dom2 to only their home directories. I do not want them to access any other directories on dom1 or dom2. So I mounted... (2 Replies)
Discussion started by: sai2krishna
2 Replies
3. AIX
I have next configuration :
- AIX 5.3 (5300-11-03-1013)
- pWare.SAMBA 3.5.8.1
- OpenSSH 5.2.0
- OpenSSL 0.9.8
Now, to be more clearly I'll explain what I need indeed.
My task is set up integration AIX server to Active Directory 2008 with Samba (Winbind) for chrooted SSH connections.
It... (3 Replies)
Discussion started by: jess_t03
3 Replies
4. Solaris
Hi all,
I'm trying to start named in chroot environment manually but i'm getting the following error
bash-3.00# cat /etc/release
Solaris 10 6/06 s10s_u2wos_09a SPARC
Copyright 2006 Sun Microsystems, Inc. All Rights Reserved.
Use is... (1 Reply)
Discussion started by: h@foorsa.biz
1 Replies
5. Solaris
Hello Friends,
I am trying the chroot command on a Solaris box (SunOS sx07 5.10 Generic_144489-12 i86pc i386 i86pc) but i am getting an error message
chroot: exec failed: Exec format error
Did any of you folks got this error before .. and how did you guys fix it .. please help me... (2 Replies)
Discussion started by: sudharma
2 Replies
6. AIX
i am planning to configure the DNS server with restricted environment by chroot. Can anybody help me that what are all the filesets required to configure DNS with Chroot for aix 5.3 os. And also i need to run the bind with non root user. How can i configure that. I tried googling and... (1 Reply)
Discussion started by: kmvinay
1 Replies
7. Solaris
Hi all. I have installed openssh 5.3 and set up jailed root.
It works almost as I want it to I cant cd to any directory above my ch root.
my config :
entry in passwd:
test2:x:103:113::/users2/test2:/bin/false
sshd_conf:
Match User test2
ChrootDirectory /users2/%u
# ... (4 Replies)
Discussion started by: vettec3
4 Replies
8. UNIX for Dummies Questions & Answers
I was reading an article on how it is very important to setup a chroot jail to run bind. I can follow what the article says but one thing I am unclear about is now on system boot the BIND process in the chroot jail will start since it the owner will no longer be root but some other user. Can... (1 Reply)
Discussion started by: mojoman
1 Replies
9. UNIX for Advanced & Expert Users
HI ,
I am trying to setup chrooted environment on RHEL4, for squid proxy.
I have copied the required libraries and stuff for chroot. Used the below for chroot-shell .
user is squid
# grep squid /etc/passwd
squid:x:500:501::/opt/squid:/bin/chroot-shell
directory trying to jail is... (2 Replies)
Discussion started by: Crazy_murli
2 Replies
10. AIX
Hi!!
I'm currently running AIX 4.3.3 and i'm trying to setup a chroot environment for the users who use SFTP, i spend a lot time SFTW but i can't make it work.
I got openssh3.9p1 whit the chroot patch.
Any help is greatly appreciated. (0 Replies)
Discussion started by: samurai79
0 Replies
FTPCHROOT(5) BSD File Formats Manual FTPCHROOT(5)
NAME
ftpchroot -- list users and groups subject to FTP access restrictions
DESCRIPTION
The file ftpchroot is read by ftpd(8) at the beginning of an FTP session, after having authenticated the user. Each line in ftpchroot corre-
sponds to a user or group. If a line in ftpchroot matches the current user or a group he is a member of, access restrictions will be applied
to this session by changing its root directory with chroot(2) to that specified on the line or to the user's login directory.
The order of records in ftpchroot is important because the first match will be used. Fields on each line are separated by tabs or spaces.
The first field specifies a user or group name. If it is prefixed by an ``at'' sign, '@', it specifies a group name; the line will match
each user who is a member of this group. As a special case, a single '@' in this field will match any user. A username is specified other-
wise.
The optional second field describes the directory for the user or each member of the group to be locked up in using chroot(2). Be it omit-
ted, the user's login directory will be used. If it is not an absolute pathname, then it will be relative to the user's login directory. If
it contains the /./ separator, ftpd(8) will treat its left-hand side as the name of the directory to do chroot(2) to, and its right-hand side
to change the current directory to afterwards.
FILES
/etc/ftpchroot
EXAMPLES
These lines in ftpchroot will lock up the user ``webuser'' and each member of the group ``hostee'' in their respective login directories:
webuser
@hostee
And this line will tell ftpd(8) to lock up the user ``joe'' in /var/spool/ftp and then to change the current directory to /joe, which is rel-
ative to the session's new root:
joe /var/spool/ftp/./joe
And finally the following line will lock up every user connecting through FTP in his respective ~/public_html, thus lowering possible impact
on the system from intrinsic insecurity of FTP:
@ public_html
SEE ALSO
chroot(2), group(5), passwd(5), ftpd(8)
BSD
January 26, 2003 BSD
