[scponly] scp fails

Kaleb Pederson kibab at icehouse.net
Fri Jun 2 23:53:34 EDT 2006 

I was actually reading a couple of articles on eash just a couple of days 
ago :)  It looks quite nice!

First, I would turn on the debugging in scponly if you haven't already: echo 1 
> $prefix/etc/scponly/debuglevel.  Then you should get syslog debugging 
output from scponly.  If you post the results, there's a chance we might 
recognize what's going on.

If we can't... I would suggest you strace everything to find out what's really 
going on.  Here is an excerpt from a message I posted on the details.  You 
probably don't need them, but I'll post them anyway:

---
I usually use something like this [ in this sequence ]:

# from the client
$ sftp username at hostname
[prompts for password ... I don't enter it yet]

# from the server
$ ps -Af | grep -i username
root     10206 16786  0 15:41 ?        00:00:00 sshd: username [priv]
sshd     10207 10206  0 15:41 ?        00:00:00 sshd: username [net]
root     10215 18650  0 15:42 pts/2    00:00:00 grep -i username

# still on server, now knowing PIDs
$ strace -o sftp.log -f -ff -p 10206
# make sure you substitute the right PID above

# from the client
[ finish entering password ]
[ execute sftp command you want logged ]
[ quit]

Now, you can take a look at sftp.log and find out what's going on.
There will be several sftp.log.<PID> files created.  You'll be interested in 
the one that exec's the scponly process.
---

Hope that helps.

--Kaleb

On Friday 02 June 2006 3:19 pm, Doug Hanks wrote:
> I'm the author of Entperise Audit Shell (http://www.sf.net/projects/eash)
>
> I think I've ran into the same problem as you.  Did you ever run into
> any issues with FreeBSD?
>
> I can execute remote commands just fine, but when I execute scp, my
> program waits about 0.5 seconds and exits.
>
> My shell logs the scp file transfers on Solaris, AIX, Linux and
> everything else except FreeBSD.  When I do an scp on FreeBSD I get the
> 'connection lost' error. I verified this with ssh user at host ssh -f
> /etc/hosts, and it waits about 0.5 seconds and exits.
>
> I was hoping you could help shed some light on this weird bug with
> your experiences with scponly.
>
> Here is the similiar problem I found with scponly:
> https://lists.ccs.neu.edu/pipermail/scponly/2003-June/000269.html
>
> When the shell is /bin/sh it works, and when it's scponly, it gets the
> 'lost connection' error.
>
> My program is behaving the exact same way :(
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : https://lists.ccs.neu.edu/pipermail/scponly/attachments/20060602/56a46713/attachment.bin

More information about the scponly mailing list