[scponly] Cannot login after upgrade to 4.2 on FreeBSD 6.0
Hideyuki KURASHINA
rushani at bl.mmtr.or.jp
Tue Dec 27 10:43:20 EST 2005
>>> On Tue, 27 Dec 2005 16:13:52 +0100, "Helmut Schneider" <jumper99 at gmx.de> said:
> > I recently upgraded from 4.1 to 4.2. By now I cannot login anymore.
> > Using WinSCP I immediately get an unspecified error, using ssh -l
> > from another machine at least shows up /etc/motd and then closes the
> > connection.
>
> JFYI, I was not able to use scponly 4.2 on
>
> FreeBSD 5.3, 5.4 and 6.0
> OpenBSD 3.7 and 3.8
>
> using ports, packages or compile it on my own.
Is this only if you enabled chroot?
I confirmed scp, sftp, WinSCP (both SCP and SFTP mode) work if chroot
is not enabled. If chroot enabled, /var/log/auth.log says
Dec 28 00:07:39 tpx40 scponly[7786]: chroot dir writable by group/other: /home/scponly
while the directory actually not writable by group & other as follows.
# ls -ld /home/scponly
drwxr-xr-x 8 root wheel 512 Dec 28 00:05 /home/scponly/
Helmut, you can able to use scponly by specifying
--disable-chroot-checkdir to configure script for the moment,
but be sure to recent vulnerabilities.
-- rushani
More information about the scponly
mailing list