I’m aware of the fact that you can customize jk_chrootsh, however, I’ve been trying to understand how the chroots are configured by default and how to customize them without adding unnecessary libraries/applications across-the-board to /chroot. I believe this is possible with jk_chrootsh, but the jk_init command doesn’t seem to work the “normal” way per the documentation I’m finding on it. I would like to enable editors (vi, nano, emacs) and sftp on a few accounts that I grant SSH access to. The rest don’t need anything.
An update, I was able to get editors working across-the-board using jk_cp. However, even when using that command to copy the required stuff for ssh/sftp, sftp fails to work because ssh freaks about about the user not existing?
Debugging the sftp command via ssh within the chroot:
id: cannot find name for group ID 513
id: cannot find name for user ID 513
[I have no name!@falcon ~]$ sftp falcon
Connecting to falcon…
You don’t exist, go away!
Couldn’t read packet: Connection reset by peer
[I have no name!@falcon ~]$
If I remember well it is because the id binary has to be in the jail too…
I already had this pbm, a long time ago and did some debugging with Chris and maybe Paul… I’m sure they should remember what was the pbm. Maybe try to contact them.