Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > Installation/Configuration

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 5th October 2011, 20:08
Salital Salital is offline
Member
 
Join Date: Jul 2011
Posts: 48
Thanks: 5
Thanked 0 Times in 0 Posts
Default ISPConfig Jailkit Setting. How does it work?

Still anyone solution for my issue in this forum. I read different post but I don't find what I need ... then I decide to write this post

I have a Jailkik Chroot for the USER Salx with salxssh username for the ssh connection (in the option I set that dir: /var/www/clients/client2/salx.mywebsitedomain.com/web)

but when I connect via ssh ...

1. I am in this dir

/var/www/clients/web4/./home/salxssh

2. when I try do browse the directory I can reach the root! and see all webserver filesystem

I think something wrong

MY QUESTION IS!?

I have set the Jailkit CHROOT SHELL USER in ISPConfig or not!?

IF THE ANSWER IS NO I HAVE TO FOLLOW THIS STEPS TO SET A Jailkit CHROOT SHELL for the user?

//////////////////////////// WARNING READ ALL THE POST ///////////////

# Initialise the jail
mkdir /home/ssh
chown root:root /home/ssh
chmod 0755 /home/ssh
jk_init -j /home/ssh jk_lsh
jk_init -j /home/ssh ssh
# Create the account
jk_addjailuser -j /home/ssh test
# Edit the jk_lsh configfile in the jail; see man jk_lsh..
# You can use every editor you want; I choose 'joe'
joe /home/ssh/etc/jailkit/jk_lsh.ini
# Restart jk_socketd so that log messages are transferred
killall jk_socketd
jk_socketd
# Test the account
ssh test@localhost
# Check the logs to see if everything is correct
tail /var/log/daemon.log /var/log/auth.log

////////////////////////////// WARNIN READ ALL THE POST /////////////////

thank you in advance


S
Reply With Quote
Sponsored Links
  #2  
Old 6th October 2011, 08:24
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 34,555
Thanks: 791
Thanked 4,977 Times in 3,899 Posts
Default

1) Thats ok. /var/www/clients/client2/salx.mywebsitedomain.com is not a directory, its a symlinkt to /var/www/clients/web4

Quote:
I have set the Jailkit CHROOT SHELL USER in ISPConfig or not!?
That depends on the web4 user in /etc/passwd. Please post the output of:

grep web4 /etc/passwd

and if jailkit is installed correctly.

Quote:
IF THE ANSWER IS NO I HAVE TO FOLLOW THIS STEPS TO SET A Jailkit CHROOT SHELL for the user?
No. Dont follow any of these steps or you will break your server.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #3  
Old 6th October 2011, 17:04
Salital Salital is offline
Member
 
Join Date: Jul 2011
Posts: 48
Thanks: 5
Thanked 0 Times in 0 Posts
 
Default

Hi,

for that

Quote:
grep web4 /etc/passwd
here the lines for web4 in the

Quote:
web4:x:5005:5007::/var/www/clients/client2/web4/./home/web4:/bin/false
stalxssh:x:5005:5007::/var/www/clients/client2/web4/./home/stalxssh:/bin/bash
NOTE: I don't know if you want other the lines in the etc/passwd file

When you say

Quote:
and if jailkit is installed correctly.
I think yes 'cause follow the Debian Perfect Server Installation I don't know is exist another way to understand if jailkit is installed correctly?

thk,

S
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Control Panel - E-mail Tab is empty domi-nik General 15 14th April 2011 18:17
How to config Proftpd to work with passive mode in ISPConfig 2.2.35 X-admin Installation/Configuration 0 6th June 2010 18:52
Help. Apache don't start payne Server Operation 3 17th August 2007 15:57
ISPConfig install error: The PHP binary coming with ISPConfig does not work... mlanglois Installation/Configuration 9 13th July 2006 14:56


All times are GMT +2. The time now is 06:48.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.