I'm aware of the fact that you can customize jk_chrootsh, however, I've been trying to understand how the chroots are configured by default and how to customize them without adding unnecessary libraries/applications across-the-board to /chroot. I believe this is possible with jk_chrootsh, but the jk_init command doesn't seem to work the "normal" way per the documentation I'm finding on it. I would like to enable editors (vi, nano, emacs) and sftp on a few accounts that I grant SSH access to. The rest don't need anything.

Any insights?

Thanks!

An update, I was able to get editors working across-the-board using jk_cp. However, even when using that command to copy the required stuff for ssh/sftp, sftp fails to work because ssh freaks about about the user not existing?


[alex@dogpound ~]$ sftp alexmcmi@falcon
Connecting to falcon...
alexmcmi@falcon's password:
Connection closed
[alex@dogpound ~]$

Debugging the sftp command via ssh within the chroot:

id: cannot find name for group ID 513
id: cannot find name for user ID 513
[I have no name!@falcon ~]$ sftp falcon
Connecting to falcon...
You don't exist, go away!
Couldn't read packet: Connection reset by peer
[I have no name!@falcon ~]$



Any ideas?

If I remember well it is because the id binary has to be in the jail too....

I already had this pbm, a long time ago and did some debugging with Chris and maybe Paul... I'm sure they should remember what was the pbm. Maybe try to contact them.