[Bug 3446] ChrootDirectory - Broken Pipe

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Mon Jun 13 10:00:50 AEST 2022


https://bugzilla.mindrot.org/show_bug.cgi?id=3446

Darren Tucker <dtucker at dtucker.net> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |dtucker at dtucker.net

--- Comment #1 from Darren Tucker <dtucker at dtucker.net> ---
(In reply to dev.dorrejo from comment #0)
[...]
> when i uncomment ChrootDirectory, i will get the next output
> 
> $ sftp rose at localhost
> (rose at localhost) Password: 
> client_loop: send disconnect: Broken pipe
> Connection closed
> 
> 
> Dir permission
> $ tree -pu /var/www/
> [drwxr-xr-x rose    ]  /var/www/
> └── [drwxr-xr-x rose    ]  webdata

All components of the ChrootDir path need to be owned by root and mode
755 or stricter.  Quoting sshd_config(5):

   At session startup sshd(8) checks that all components of the
pathname
   are root-owned directories which are not writable by any other user
   or group

If that's not it, please run sshd in debug mode (/path/to/sshd -ddde -p
2222, then add -P 222 to your sftp command) and and attach the output
to this bug.  Also, what's the "Other" hardware platform and what
distro is this?

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list