[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Jailkit-users] No Shell Prompt After Login
|
From: |
Alan V. Shackelford |
|
Subject: |
[Jailkit-users] No Shell Prompt After Login |
|
Date: |
Mon, 9 Oct 2006 08:41:09 -0400 |
Here is the output from jk_jailuser you requested:
jhunix1:/home # jk_jailuser -m -j /chroot -s /bin/bash eweintr1
Traceback (most recent call last):
File "/usr/sbin/jk_jailuser", line 285, in ?
main()
File "/usr/sbin/jk_jailuser", line 276, in main
jailuser(jail, username, movehome, config)
File "/usr/sbin/jk_jailuser", line 175, in jailuser
shutil.copy(oldhome, newhome)
File "/usr/lib/python2.3/shutil.py", line 71, in copy
copyfile(src, dst)
File "/usr/lib/python2.3/shutil.py", line 37, in copyfile
fsrc = open(src, 'rb')
IOError: [Errno 21] Is a directory
Here is what shows in the logs when one of the jailed users logs in:
Oct 6 16:24:23 jhunix1 jk_chrootsh[31345]: now entering jail /chroot for
user tromeo1 (10339)
But the shell prompt doesn't come. Also of note, I can do an xdm login for a
jailed user and the desktop appears, but the user can not open a terminal. I
suspect this may be a case where I need to copy a lib or two into the jail,
but I can't imagine which one(s) it would be.
Thanks for you help.
Alan
Alan V. Shackelford Manager of Enterprise Web Services
The Johns Hopkins University / Johns Hopkins Medical Institutions
Baltimore, Maryland USA address@hidden 410-735-4773
-----Original Message-----
From: address@hidden
[mailto:address@hidden On Behalf Of
address@hidden
Sent: Saturday, October 07, 2006 12:08 PM
To: address@hidden
Subject: Jailkit-users Digest, Vol 13, Issue 4
Send Jailkit-users mailing list submissions to
address@hidden
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.nongnu.org/mailman/listinfo/jailkit-users
or, via email, send a message with subject or body 'help' to
address@hidden
You can reach the person managing the list at
address@hidden
When replying, please edit your Subject line so it is more specific than
"Re: Contents of Jailkit-users digest..."
Today's Topics:
1. No Shell Prompt After Login (Alan V. Shackelford)
2. Re: No Shell Prompt After Login (Olivier Sessink)
----------------------------------------------------------------------
Message: 1
Date: Fri, 6 Oct 2006 13:08:55 -0400
From: "Alan V. Shackelford" <address@hidden>
Subject: [Jailkit-users] No Shell Prompt After Login
To: <address@hidden>
Message-ID: <address@hidden>
Content-Type: text/plain; charset="US-ASCII"
I have a new SGI Altix bundle running SuSE Linux Enterprise Server 9 for
Itanium. I have created a jail for my users, and have created around 10,000
user accounts using a script that basically adds a user, then jails the
user, then copies his homedir contents to the jail (that part of the
jk_jailuser script doesn't seem to work well). Here is the line from
/etc/passwd for a user:
aaarons1:x:1004:100::/chroot/./home/aaarons1:/usr/sbin/jk_chrootsh
And for the same user in the /chroot/etc/passwd:
aaarons1:x:1004:100::/home/aaarons1:/bin/bash
The bash shell exists at /bin/bash within the jail, and is world executable.
The home directories look fine in and out of the jail.
My problem is that when one of the users tries to login, they are challenged
for username and password, but after successfully completing this the screen
goes dead, and there is no shell prompt. The strangest part of this is that
when I log in it works fine. I am configured exactly the same as the users,
even down to group memberships, etc. I can't figure it out.
If I run `last` I can see the successful logins for the users, all with zero
time on line, but they are unable to get a shell. The LDAP server shows a
successful credentials check for each login, and the local pam logs show
failures for the deliberate password failures I have done during my
checking.
This one has me baffled. What have I left out to cause a shell prompt for my
users when they successfully pass the login?
Alan V. Shackelford Manager of Enterprise Web Services
The Johns Hopkins University / Johns Hopkins Medical Institutions
Baltimore, Maryland USA address@hidden 410-735-4773
------------------------------
Message: 2
Date: Sat, 07 Oct 2006 11:13:05 +0200
From: Olivier Sessink <address@hidden>
Subject: Re: [Jailkit-users] No Shell Prompt After Login
To: address@hidden
Message-ID: <address@hidden>
Content-Type: text/plain; charset=ISO-8859-1
Alan V. Shackelford wrote:
> I have a new SGI Altix bundle running SuSE Linux Enterprise Server 9
> for Itanium. I have created a jail for my users, and have created
> around 10,000 user accounts using a script that basically adds a user,
> then jails the user, then copies his homedir contents to the jail
> (that part of the jk_jailuser script doesn't seem to work well).
what doesn't work? is there an error? can you post the error?
[..]
> If I run `last` I can see the successful logins for the users, all
> with zero time on line, but they are unable to get a shell. The LDAP
> server shows a successful credentials check for each login, and the
> local pam logs show failures for the deliberate password failures I
> have done during my checking.
what do the logs say about jk_chrootsh ?
regards,
Olivier
------------------------------
_______________________________________________
Jailkit-users mailing list
address@hidden
http://lists.nongnu.org/mailman/listinfo/jailkit-users
End of Jailkit-users Digest, Vol 13, Issue 4
********************************************