[scponly] scponly Solaris 9 unknown user error after scp authentication

Mandy Hargis HargisM at si.edu
Wed Mar 23 16:28:50 EST 2005 

Hi,

I am trying to get scponly 4.0 to work on Solaris 9.    I have compiled
scponly, manually setup my chroot jail directory structure and passwd files.
 

To test general chroot functionality, I can issue this command:

ssh scponly at server  ls

and successfully get the 'ls' output of my chroot'd home directory for the
scponly user.

My log file shows the following, indicative of the successful command:

[437]: [ID 485826 auth.info] chrooted binary in place, will chroot()
[437]: [ID 667827 auth.debug] 3 arguments in total.
[437]: [ID 445495 auth.debug]     arg 0 is scponlyc
[437]: [ID 445495 auth.debug]     arg 1 is -c
[437]: [ID 445495 auth.debug]     arg 2 is ls
[437]: [ID 652719 auth.debug] opened log at LOG_AUTH, opts 0x00000009
[437]: [ID 805961 auth.debug] retrieved home directory of
"/export/chroot//home/scponly" for user "scponly"
[437]: [ID 263513 auth.debug] chrooting to dir: "/export/chroot"
[437]: [ID 663861 auth.debug] setting uid to 1015
[437]: [ID 290257 auth.debug] processing request: "ls"
[437]: [ID 699181 auth.info] running: /usr/ucb/ls (username: scponly(1015),
IP/port: 160.111.223.7 65259 22)

When I try the command:

scp file scponly at server:/home/scponly/incoming 
(or
scp file scponly at server:incoming)

I get the following error on the host I am trying to scp from 
unknown user 1015
lost connection

So, I review my logs  (I have set my debug level to 1, by the way),  my
output looks exactly the same as the successful 'ls' command:
 
[438]: [ID 800047 auth.info] Accepted password for scponly from
160.111.223.7 port 65261 ssh2
[441]: [ID 485826 auth.info] chrooted binary in place, will chroot()
[441]: [ID 667827 auth.debug] 3 arguments in total.
[441]: [ID 445495 auth.debug]     arg 0 is scponlyc
[441]: [ID 445495 auth.debug]     arg 1 is -c
[441]: [ID 445495 auth.debug]     arg 2 is scp -t /home/scponly/incoming
[441]: [ID 652719 auth.debug] opened log at LOG_AUTH, opts 0x00000009
[441]: [ID 805961 auth.debug] retrieved home directory of
"/export/chroot//home/scponly" for user "scponly"
[441]: [ID 263513 auth.debug] chrooting to dir: "/export/chroot"
[441]: [ID 663861 auth.debug] setting uid to 1015
[441]: [ID 290257 auth.debug] processing request: "scp -t
/home/scponly/incoming"
[441]: [ID 699181 auth.info] running: /usr/local/bin/scp -t
/home/scponly/incoming (username: scponly(1015), IP/port: 160.111.223.7
65261 22)

I have compiled with:
./configure --enable-chrooted-binary

And just for the heck of it, tried:
also with the options --enable-passwd-compat --with-default-chdir=incoming
but no difference.

Has anyone been able to successful install scponly 4.0 on Solaris 9?  Has
anyone come across this "unknown user" error before?

Thanks,
Mandy Hargis

More information about the scponly mailing list