[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Jailkit-users] RE: Jailkit-users Digest, Vol 39, Issue 3
|
From: |
Kaleb Joel Albee |
|
Subject: |
[Jailkit-users] RE: Jailkit-users Digest, Vol 39, Issue 3 |
|
Date: |
Fri, 6 Feb 2009 10:02:39 -0700 |
Olivier,
I have looked in /var/log/ auth and messages, neither report anything
other than connected to my jail then an automatic disconnect. The setup is a
default 'out of the box' rather no real changes.
=> /jail/etc/jailkit/jk_lsh.ini
[kaleb]
paths= /usr/bin
executables= /usr/bin/mysql
=> /jail/etc/passwd
ldsdevnet:x:1004:1005:,,,:/home/ldsdevnet:/usr/sbin/jk_lsh
=> /var/log/auth.log (only the pertinent lines)
Feb 6 16:55:19 familysearch sshd[2417]: pam_unix(sshd:session): session opened
for user ldsdevnet by (uid=0)
Feb 6 16:55:19 familysearch jk_chrootsh[2419]: now entering jail /jail for
user ldsdevnet (1004)
Feb 6 16:55:19 familysearch sshd[2417]: pam_unix(sshd:session): session closed
for user ldsdevnet
kaleb
-----Original Message-----
From: address@hidden [mailto:address@hidden On Behalf Of address@hidden
Sent: Thursday, February 05, 2009 10:02 AM
To: address@hidden
Subject: Jailkit-users Digest, Vol 39, Issue 3
Send Jailkit-users mailing list submissions to
address@hidden
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.nongnu.org/mailman/listinfo/jailkit-users
or, via email, send a message with subject or body 'help' to
address@hidden
You can reach the person managing the list at
address@hidden
When replying, please edit your Subject line so it is more specific
than "Re: Contents of Jailkit-users digest..."
Today's Topics:
1. Re: tomcat accessing jailed users home directory...group
permissions? (Olivier Sessink)
2. Some problems - SUPER NOOB!! (Kaleb Joel Albee)
3. Re: Some problems - SUPER NOOB!! (Olivier Sessink)
----------------------------------------------------------------------
Message: 1
Date: Wed, 04 Feb 2009 16:28:12 +0100
From: Olivier Sessink <address@hidden>
Subject: Re: [Jailkit-users] tomcat accessing jailed users home
directory...group permissions?
To: address@hidden
Message-ID: <address@hidden>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Ryan Wexler wrote:
[..]
> I thought that I could get around this by putting assigning tomcat
> user and the jailed users to the same group. But when I add group
> write access to the jailed users home directory then the jailkit
> doesn't allow sftp anymore. Why is this? Is there a way to get
> around this while still retaining my jails and not running tomcat
> under the root user?
see `man jk_chrootsh` and see your log messages.
you probably want to use
relax_home_group_permissions=1
regards,
Olivier
------------------------------
Message: 2
Date: Wed, 4 Feb 2009 14:03:45 -0700
From: Kaleb Joel Albee <address@hidden>
Subject: [Jailkit-users] Some problems - SUPER NOOB!!
To: "address@hidden" <address@hidden>
Message-ID:
<address@hidden>
Content-Type: text/plain; charset="us-ascii"
Kaleb,
I am trying to use mysql with a jailed account. However when I try to use
mysql it reports an error of ERROR 2002 (HY000): Can't connect to local MySQL
server through socket '/var/run/mysqld/mysqld.sock' (2)
Plus, I cant seem to be able to use jk_lsh.ini It will automatically
disconnect me. It asks for a password and accepts it, but will log me off.
Any help would be much appreciated,
Kaleb
NOTICE: This email message is for the sole use of the intended recipient(s)
and may contain confidential and privileged information. Any unauthorized
review, use, disclosure or distribution is prohibited. If you are not the
intended recipient, please contact the sender by reply email and destroy all
copies of the original message.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
http://lists.gnu.org/pipermail/jailkit-users/attachments/20090204/99e458d2/attachment.html
------------------------------
Message: 3
Date: Wed, 04 Feb 2009 23:07:02 +0100
From: Olivier Sessink <address@hidden>
Subject: Re: [Jailkit-users] Some problems - SUPER NOOB!!
To: address@hidden
Message-ID: <address@hidden>
Content-Type: text/plain; charset=UTF-8
Kaleb Joel Albee wrote:
> Kaleb,
>
> I am trying to use mysql with a jailed account. However when I try to
> use mysql it reports an error of ERROR 2002 (HY000): Can’t connect to
> local MySQL server through socket ‘/var/run/mysqld/mysqld.sock’ (2)
you can connext to mysql over tcp/ip and over a unix domain socket
(slightly faster). /var/run/mysqld/mysqld.sock is the unix domain
socket. Obviously this socket is not available in the jail.
try to connect over tcp/ip (use host localhost) or use a 'bind mount' to
make the socket available in the jail
mount /var/run/mysqld /my/jail/var/run/mysqld -o bind
> Plus, I cant seem to be able to use jk_lsh.ini It will automatically
> disconnect me. It asks for a password and accepts it, but will log me off.
what is your setup, and what is in the logs?
Olivier
------------------------------
_______________________________________________
Jailkit-users mailing list
address@hidden
http://lists.nongnu.org/mailman/listinfo/jailkit-users
End of Jailkit-users Digest, Vol 39, Issue 3
********************************************
- [Jailkit-users] RE: Jailkit-users Digest, Vol 39, Issue 3,
Kaleb Joel Albee <=