[scponly] ssh/scp logins to chrooted sftp-only-server

Thomas Witt mail at thomas-witt.com
Sat Jan 21 14:24:44 EST 2006 

Hi,

I've got the following problem: I've set up scponly as chrooted.
I am running Linux using SuSE 9.2.

Everything works fine, but when I try to ssh or scp (which SHOULD
be denied), I'm getting the following output from ssh:

debug1: Authentication succeeded (publickey).
debug1: channel 0: new [client-session]
debug1: Entering interactive session.
debug1: Sending command: scp -v -t .

and the ssh-client hangs.

But this produces the following tasks on my machine:

scptest 28849  0.0  0.2  7800 1512 ?        S    20:20   0:00 sshd:  
scptest at notty
scptest 28850  0.0  0.0     0    0 ?        Zs   20:20   0:00  
[scponlyc] <defunct>

... which is obviously bad. How can I configure scponly to just
exit and throw the visitor out without producing defunct-Tasks?

... Thomas

P.S:: The debug output from sshd is as follows:

Jan 21 20:20:47 mail sshd[28868]: debug1: Entering interactive  
session for SSH2.
Jan 21 20:20:47 mail sshd[28868]: debug2: fd 5 setting O_NONBLOCK
Jan 21 20:20:47 mail sshd[28868]: debug2: fd 6 setting O_NONBLOCK
Jan 21 20:20:47 mail sshd[28868]: debug1: server_init_dispatch_20
Jan 21 20:20:47 mail sshd[28868]: debug1: server_input_channel_open:  
ctype session rchan 0 win 131072 max 32768
Jan 21 20:20:47 mail sshd[28868]: debug1: input_session_request
Jan 21 20:20:47 mail sshd[28868]: debug1: channel 0: new [server- 
session]
Jan 21 20:20:47 mail sshd[28868]: debug1: session_new: init
Jan 21 20:20:47 mail sshd[28868]: debug1: session_new: session 0
Jan 21 20:20:47 mail sshd[28868]: debug1: session_open: channel 0
Jan 21 20:20:47 mail sshd[28868]: debug1: session_open: session 0:  
link with channel 0
Jan 21 20:20:47 mail sshd[28868]: debug1: server_input_channel_open:  
confirm session
Jan 21 20:20:47 mail sshd[28868]: debug1: server_input_channel_req:  
channel 0 request exec reply 0
Jan 21 20:20:47 mail sshd[28868]: debug1: session_by_channel: session  
0 channel 0
Jan 21 20:20:47 mail sshd[28868]: debug1: session_input_channel_req:  
session 0 req exec
Jan 21 20:20:47 mail sshd[28869]: debug3: channel 0: close_fds r -1 w  
-1 e -1 c -1

More information about the scponly mailing list