HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials

HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials (http://www.howtoforge.com/forums/index.php)
-   Installation/Configuration (http://www.howtoforge.com/forums/forumdisplay.php?f=27)
-   -   ISPConfig Jailkit Setting. How does it work? (http://www.howtoforge.com/forums/showthread.php?t=54440)

Salital 5th October 2011 21:08

ISPConfig Jailkit Setting. How does it work?
 
Still anyone solution for my issue in this forum. I read different post but I don't find what I need ... then I decide to write this post

I have a Jailkik Chroot for the USER Salx with salxssh username for the ssh connection (in the option I set that dir: /var/www/clients/client2/salx.mywebsitedomain.com/web)

but when I connect via ssh ...

1. I am in this dir

/var/www/clients/web4/./home/salxssh

2. when I try do browse the directory I can reach the root! and see all webserver filesystem

I think something wrong

MY QUESTION IS!?

I have set the Jailkit CHROOT SHELL USER in ISPConfig or not!?

IF THE ANSWER IS NO I HAVE TO FOLLOW THIS STEPS TO SET A Jailkit CHROOT SHELL for the user?

//////////////////////////// WARNING READ ALL THE POST ///////////////

# Initialise the jail
mkdir /home/ssh
chown root:root /home/ssh
chmod 0755 /home/ssh
jk_init -j /home/ssh jk_lsh
jk_init -j /home/ssh ssh
# Create the account
jk_addjailuser -j /home/ssh test
# Edit the jk_lsh configfile in the jail; see man jk_lsh..
# You can use every editor you want; I choose 'joe'
joe /home/ssh/etc/jailkit/jk_lsh.ini
# Restart jk_socketd so that log messages are transferred
killall jk_socketd
jk_socketd
# Test the account
ssh test@localhost
# Check the logs to see if everything is correct
tail /var/log/daemon.log /var/log/auth.log

////////////////////////////// WARNIN READ ALL THE POST /////////////////

thank you in advance


S

till 6th October 2011 09:24

1) Thats ok. /var/www/clients/client2/salx.mywebsitedomain.com is not a directory, its a symlinkt to /var/www/clients/web4

Quote:

I have set the Jailkit CHROOT SHELL USER in ISPConfig or not!?
That depends on the web4 user in /etc/passwd. Please post the output of:

grep web4 /etc/passwd

and if jailkit is installed correctly.

Quote:

IF THE ANSWER IS NO I HAVE TO FOLLOW THIS STEPS TO SET A Jailkit CHROOT SHELL for the user?
No. Dont follow any of these steps or you will break your server.

Salital 6th October 2011 18:04

Hi,

for that

Quote:

grep web4 /etc/passwd
here the lines for web4 in the

Quote:

web4:x:5005:5007::/var/www/clients/client2/web4/./home/web4:/bin/false
stalxssh:x:5005:5007::/var/www/clients/client2/web4/./home/stalxssh:/bin/bash
NOTE: I don't know if you want other the lines in the etc/passwd file

When you say

Quote:

and if jailkit is installed correctly.
I think yes 'cause follow the Debian Perfect Server Installation I don't know is exist another way to understand if jailkit is installed correctly?

thk,

S


All times are GMT +2. The time now is 18:30.

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.