SSH in jail (chroot)

Quelle: https://www.prado.lt/restrict-ssh-user-access-to-certain-directory-using-chrooted-jail-on-debian-9

sudo mkdir -p /home/jail
#ls -l /dev/{null,zero,stdin,stdout,stderr,random,tty}
 
sudo  mkdir -p /home/jail/dev
cd  /home/jail/dev
sudo mknod -m 666 null c 1 3
sudo mknod -m 666 tty c 5 0
sudo mknod -m 666 zero c 1 5
sudo mknod -m 666 random c 1 8
 
chown root:root /home/jail/
chmod 755 /home/jail/
ls -ld /home/jail/
 
mkdir -p /home/jail/bin
cp -v /bin/sh /home/jail/bin/
 
 
#ldd /bin/bash 
#ldd /bin/sh #default by useradd
mkdir -p /home/jail/lib/x86_64-linux-gnu
mkdir -p /home/jail/lib64
 
cp -v /lib64/ld-linux-x86-64.so.2 /home/jail/lib64/
cp -v /lib/x86_64-linux-gnu/{libtinfo.so.5,libdl.so.2,libc.so.6} /home/jail/lib/x86_64-linux-gnu/
 
mkdir /home/jail/etc
cp -vf /etc/{passwd,group} /home/jail/etc/
 
#sshd config
vim /etc/ssh/sshd_config
 
#define username to apply chroot jail to
Match User jail
#specify chroot jail
ChrootDirectory /home/jail
PasswordAuthentication yes

Werkzeuge

Navigationsmenüs und Suche

Wikiübergreifende Schnellsuche

Seitenstatus

Standortanzeiger

Seiten-Werkzeuge

Metainformationen zur Seite

SSH in jail (chroot)