[scponly] Scponly and denied request

[mike.miller at bmg.com]

Thanks Roland. Although I try to keep my ports tree up to date, there was a
patch for scponly and things seem to be working fairly well now, chroot
support and all.

Thanks :-)

-- Mike Miller

-----Original Message-----
From: Roland Lammel [mailto:roland.lammel at kapsch.net] 
Sent: September 9, 2003 4:07 AM
To: mike.miller at bmg.com
Cc: scponly at lists.ccs.neu.edu
Subject: Re: [scponly] Scponly and denied request


Things to try...

- is scp working without scponly
- is sftp working (just use sftp instead of scp)
- is the file readable
- is the scp binary in the path (if chrooted)

Just my 2 cents, good luck

+rl

mike.miller at bmg.com wrote:
> I've seen this problem listed a few times on the mailing lists, but 
> haven't seen any solutions posted.
> 
> I am running scponly v3.8 installed via ports on FreeBSD 4.8-RELEASE.
> 
> I set the user's shell to "/usr/local/bin/scponly" and have added 
> "/usr/local/bin/scponly" to the /etc/shells file as well. I've set the 
> debuglevel to 2. I get this message when trying to copy a file to or 
> from the machine:
> 
> 
>> scp user at host:/usr/home/user/test.pl ./
> 
> Password:
> [36830]: 3 arguments in total.
> [36830]:        arg 0 is scponly
> [36830]:        arg 1 is -c
> [36830]:        arg 2 is scp -f /usr/home/user/test.pl
> [36830]: opened log at LOG_AUTHPRIV, opts 0x00000029
> [36830]: retrieved home directory of "/usr/home/user" for user "user"
> [36830]: setting uid to 1000
> [36830]: processing request: "scp -f /usr/home/user/test.pl"
> 
> [36830]: denied request: scp -f /usr/home/user/test.pl [username: 
> user(1000), IP/port: 192.168.11.13 2354 22]
> 
> 
> Does anyone have a solution for this or can point out where else to 
> look?
> 

-- 
Ing. Roland Lammel | Technical Assistance Services
Kapsch CarrierCom AG | Am Europlatz 5 | 1120 Vienna | Austria Phone +43
(0)50811 3456 | Mobile +43 664 628 3456 | Fax +43 (0)50811 3405
mailto:roland.lammel at kapsch.net | http://www.kapsch.net