[scponly] scp blues

[Kaleb Pederson]

Using a Linux-2.6 kernel compiled from source, I get the following output when 
debuglevel is set:

sshd[5027]: Accepted keyboard-interactive/pam for tmptransfer from 
XXX.YYY.202.123 port 16118 ssh2
sshd(pam_unix)[7544]: session opened for user tmptransfer by (uid=0)
scponly[7570]: chrooted binary in place, will chroot()
scponly[7570]: 3 arguments in total.
scponly[7570]:    arg 0 is scponlyc
scponly[7570]:    arg 1 is -c
scponly[7570]:    arg 2 is /usr/bin/chfn
scponly[7570]: opened log at LOG_AUTHPRIV, opts 0x00000009
scponly[7570]: retrieved home directory of "/home/chroot//home/tmptransfer" 
for user "tmptransfer"
scponly[7570]: chrooting to dir: "/home/chroot"
scponly[7570]: chdiring to dir: "/home/tmptransfer"
scponly[7570]: setting uid to 30006
scponly[7570]: processing request: "/usr/bin/chfn"
scponly[7570]: denied request: /usr/bin/chfn (resolved to: chfn) [username: 
tmptransfer(30006), IP/port: XXX.YYY.202.123 16118 22]
sshd(pam_unix)[7544]: session closed for user tmptransfer

I get that when scponly is compiled with:

./configure --prefix=/usr/local --enable-chrooted-binary 
--enable-passwd-compat --disable-wildcards --enable-winscp-compat 
--enable-scp-compat --with-sftp-server=/usr/lib/misc/sftp-server

OR

./configure --prefix=/usr/local --enable-chrooted-binary 
--enable-passwd-compat --disable-wildcards 
--with-sftp-server=/usr/lib/misc/sftp-server

What was yours configured with?

Thanks.

--Kaleb

On Thursday 16 March 2006 12:13 pm, Daniel Webb wrote:
> On Thu, Mar 16, 2006 at 08:40:32AM -0800, Kaleb Pederson wrote:
> > Version 4.6 of scponly?  What OS?
>
> Linux, 2.6 kernel, Debian stable distribution.  I compile scponly from
> sources because the Debian package is too out of date.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 191 bytes
Desc: not available
Url : https://lists.ccs.neu.edu/pipermail/scponly/attachments/20060316/b29810d4/attachment.bin