DaemonForums  

Go Back   DaemonForums > FreeBSD > FreeBSD General

FreeBSD General Other questions regarding FreeBSD which do not fit in any of the categories below.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 18th June 2008
jploh jploh is offline
New User
 
Join Date: Jun 2008
Posts: 2
Thanked 0 Times in 0 Posts
Default Can't use bash on chroot'd openssh environment

Hi,

I'm trying to create a chroot'd openssh environment. Using sh is fine but when I tried bash (and other programs), I get the following output.

Code:
/libexec/ld-elf.so.1: Shared object "libintl.so.8" not found, required by "-bash"
Original Location: /usr/local/lib/libintl.so.8
Chroot: /data/jail
Copied File Location: /data/jail/usr/local/lib/libintl.so.8

I copied it manually and tried using jk_cp of jailkit but both produced same results. My hunch is that I need to create some devices that linbintl.so.8 depend on (I don't know how and which one).

TIA!
Reply With Quote
  #2   (View Single Post)  
Old 18th June 2008
anomie's Avatar
anomie anomie is offline
Local
 
Join Date: Apr 2008
Location: Texas
Posts: 446
Thanked 69 Times in 46 Posts
Default

The security/openssh-portable port seems to support chrooted ssh.

Code:
> cd /usr/ports/security/openssh-portable
> make showconfig
===> The following configuration options are available for openssh-portable-5.0.p1,1:
     PAM=on (default) "Enable pam(3) support"
     TCP_WRAPPERS=on (default) "Enable tcp_wrappers support"
     LIBEDIT=on (default) "Enable readline support to sftp(1)"
     KERBEROS=on (default) "Enable kerberos (autodetection)"
     SUID_SSH=off (default) "Enable suid SSH (Recommended off)"
     GSSAPI=off (default) "Enable GSSAPI support (req: KERBEROS)"
     KERB_GSSAPI=off (default) "Enable Kerberos/GSSAPI patch (req: GSSAPI)"
     OPENSSH_CHROOT=off (default) "Enable CHROOT support"
     OPENSC=off (default) "Enable OpenSC smartcard support"
     OPENSCPINPATCH=off (default) "Enable OpenSC PIN patch"
     HPN=off (default) "Enable HPN-SSH patch"
     LPK=off (default) "Enable LDAP Public Key (LPK) patch"
     OVERWRITE_BASE=off (default) "OpenSSH overwrite base"
===> Use 'make config' to modify these settings
Alternatively, put your sshd daemon in a FBSD jail.
__________________
Kill your t.v.
Reply With Quote
  #3   (View Single Post)  
Old 18th June 2008
jploh jploh is offline
New User
 
Join Date: Jun 2008
Posts: 2
Thanked 0 Times in 0 Posts
Default

Thanks for the quick response. I'm already using openssh-portable with chroot. My problem is using bash as the shell (sh is fine). I still have to figure out how to allow sftp, too.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Advanced programming in the UNIX environment 2nd edition? graudeejs Book reviews 11 1st December 2008 10:15 AM
Few questions about server(openSSH, apache ,) latorion FreeBSD General 10 11th August 2008 06:59 PM
I. Treating 'iso-itis' in an OpenBSD environment with USBmediazine® J65nko Guides 3 31st July 2008 01:51 AM
How to duplicate an installed Operating Environment dk_netsvil General software and network 0 22nd July 2008 03:01 PM
What is the best kind of OpenSSH? php111 Other OS 3 3rd June 2008 10:32 PM


All times are GMT. The time now is 01:49 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick