[SGVLUG] chroot on sftp - UPDATE
Claude Felizardo
cafelizardo at gmail.com
Fri Nov 17 08:09:11 PST 2006
On 11/17/06, James Neff <jneff at tethyshealth.com> wrote:
> After following new directions from this site:
>
> http://www.netadmintools.com/art294.html
>
> I was able to get an SSH session chroot'ed but my sFTP is still not
> working yet.
>
> The debugging output from my client looks like this:
>
> Trace: FzSFtp.exe: Ssh.c(6483): Access granted
> Trace: FzSFtp.exe: Ssh.c(7161): Opened channel for session
> Trace: FzSFtp.exe: Ssh.c(7416): Started a shell/command
> Trace: FzSFtp.exe: Ssh.c(788): Server sent command exit status 127
> Trace: FzSFtp.exe: Ssh.c(5909): All channels closed. Disconnecting
> Trace: FzSFtp.exe: Ssh.c(2535): Server closed network connection
> Response: Fatal: unable to initialise SFTP: could not connect
> Trace: SftpControlSocket.cpp(2393): DoClose(0) caller=0x003de05c
> Trace: SftpControlSocket.cpp(2423): ResetOperation(4100)
> caller=0x003de05c
> Error: Unable to connect!
>
> I think I'm making progress because at least the ssh part works.
>
> Can anyone point me in the right direction to get sFTP to cooperate?
>
> Thanks,
> Jim
I've seen something similar in the past when I was playing with cvs
and ssh. if you have ssh working via chroot jail, can you see if the
sftp server is available? oh, a google search of "Fatal: unable to
initialise SFTP: could not connect " suggests checking your
sshd_config file for the sftp entry.
http://lists.freebsd.org/pipermail/freebsd-bugs/2005-September/014926.html
on the linux box i'm looking at now, here's my entry:
Subsystem sftp /usr/lib/ssh/sftp-server
so make sure the referenced file is available in your chroot jail.
claude
More information about the SGVLUG
mailing list