nabrantes
asked on
sftp chrooted enviroment
Hi there
I'm goinf nuts with seLinux framework.
I had a properly setup Centos 5.8 with (compiled) OpenSSH 5.9 chrooting users with sftponly no problem.
But I really need to make things easier with system updates and I also needed to have apache >= 2.2.15 so I decided to replicate the enviroment with Centos 6.2
I have the setup/installation process well documented so I did.
Problem is seLinux is behaving differently from 5.8 to 6.2 and I'm not being able to use sftp with a defined user...
Some sebool parameters
Tried to change context for 1 test users and I have an error:
I really need help.. I'm getting quite frustrated.
I'm goinf nuts with seLinux framework.
I had a properly setup Centos 5.8 with (compiled) OpenSSH 5.9 chrooting users with sftponly no problem.
But I really need to make things easier with system updates and I also needed to have apache >= 2.2.15 so I decided to replicate the enviroment with Centos 6.2
I have the setup/installation process well documented so I did.
Problem is seLinux is behaving differently from 5.8 to 6.2 and I'm not being able to use sftp with a defined user...
Some sebool parameters
setsebool -P ftp_home_dir=on;
setsebool -P allow_ftpd_full_access=on;#I also have vsftp
setsebool -P httpd_can_network_relay=1;#I also have net2ftp web app
setsebool -P ssh_chroot_rw_homedirs on;
Tried to change context for 1 test users and I have an error:
/sbin/restorecon -R -v /sftpjails/nasftp/home/nasftp
/sbin/restorecon reset /sftpjails/nasftp/home/nasftp context unconfined_u:object_r:defa ult_t:s0-> unconfined _u:object_ r:chroot_u ser_t:s0
/sbin/restorecon set context /sftpjails/nasftp/home/nasftp->uncon fined_u:ob ject_r:chr oot_user_t :s0 failed:'Permission denied'
I really need help.. I'm getting quite frustrated.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Because I manage to resolve it myself.
:p