sftp / ssh not working for users

Discussion in 'Installation/Configuration' started by Steffan, Aug 25, 2014.

  1. Steffan

    Steffan Member

    hello,

    Im using centos perfect install.
    But when adding a ssh user (jailkit) the user cant connect
    It says that the user does not exsist.

    ftp is working
    i can use root to ssh

    what am i missing ?
     
  2. till

    till Super Moderator Staff Member ISPConfig Developer

    Most likely the sftp binary or one of its librrys is missing in the jail. If I remember correctly, we had a thread here in the forum how to add this in the jail some time ago.
     
  3. Steffan

    Steffan Member

    i found the other tread was for ubuntu if i remember correct

    i removed the user en recreated another user with chroot shell none
    still the same problem.

    su c26testen
    su: user c26testen does not exist

    The user exsist in ispconfig
     
  4. till

    till Super Moderator Staff Member ISPConfig Developer

  5. Steffan

    Steffan Member

    looks normal but got a email with:


    WARNING - Shell user plugin disabled by security settings.


    ======================================================


    ##### SERVER #####
    IP-address (as per hostname): ***.***.***.***
    [WARN] could not determine server's ip address by ifconfig
    [INFO] ISPConfig is installed.

    ##### ISPCONFIG #####
    ISPConfig version is 3.0.5.4p3


    ##### VERSION CHECK #####

    [INFO] php (cli) version is 5.4.31

    ##### PORT CHECK #####

    [WARN] Port 8080 (ISPConfig) seems NOT to be listening
    [WARN] Port 465 (SMTP server SSL) seems NOT to be listening

    ##### MAIL SERVER CHECK #####

    [WARN] I found no "smtps" entry in your postfix master.cf
    [INFO] this is not critical, but if you want to offer SSL for smtp (not TLS) connections you have to enable this.

    ##### RUNNING SERVER PROCESSES #####

    [INFO] I found the following web server(s):
    Unknown process (httpd) (PID 25997)
    [INFO] I found the following mail server(s):
    Postfix (PID 7205)
    [INFO] I found the following pop3 server(s):
    Dovecot (PID 7347)
    [INFO] I found the following imap server(s):
    Dovecot (PID 7347)
    [INFO] I found the following ftp server(s):
    PureFTP (PID 22735)

    ##### LISTENING PORTS #####
    (only ()
    Local (Address)
    [anywhere]:443 (25997/httpd)
    [anywhere]:8000 (25997/httpd)
    [anywhere]:993 (7347/dovecot)
    [anywhere]:995 (7347/dovecot)
    [localhost]:10024 (13838/amavisd)
    [localhost]:10025 (7205/master)
    [anywhere]:3306 (13750/mysqld)
    [anywhere]:587 (7205/master)
    [anywhere]:110 (7347/dovecot)
    [anywhere]:143 (7347/dovecot)
    [anywhere]:80 (25997/httpd)
    [anywhere]:8081 (25997/httpd)
    [anywhere]:21 (22735/pure-ftpd)
    ***.***.***.***:53 (7424/named)
    [localhost]:53 (7424/named)
    [anywhere]:22 (23354/sshd)
    [localhost]:953 (7424/named)
    [anywhere]:25 (7205/master)
    *:*:*:*::*:993 (7347/dovecot)
    *:*:*:*::*:995 (7347/dovecot)
    *:*:*:*::*:587 (7205/master)
    [localhost]10 (7347/dovecot)
    [localhost]43 (7347/dovecot)
    *:*:*:*::*:21 (22735/pure-ftpd)
    *:*:*:*::*:53 (7424/named)
    *:*:*:*::*:22 (23354/sshd)
    *:*:*:*::*:953 (7424/named)
    *:*:*:*::*:25 (7205/master)

    ##### IPTABLES #####
    Chain INPUT (policy ACCEPT)
    target prot opt source destination
    fail2ban-SSH tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:22

    Chain FORWARD (policy ACCEPT)
    target prot opt source destination

    Chain OUTPUT (policy ACCEPT)
    target prot opt source destination

    Chain fail2ban-SSH (1 references)
    target prot opt source destination
    RETURN all -- [anywhere]/0 [anywhere]/0
     
  6. till

    till Super Moderator Staff Member ISPConfig Developer

    Ok, thats the explanation. When you disable the shell user plugin then no shell uses can be created. Edit the security_settings.ini file and allow to add shell users again. Then delete your shell user and create anew one.
     
  7. Steffan

    Steffan Member

    thanxs could find that setting.

    so u need to use a ssh user for sftp ?
     
  8. till

    till Super Moderator Staff Member ISPConfig Developer

    SFTP is "SSH File Transfer Protocol" and this is provided by the ssh Daemon of your operating system. Thats often mixed up with FTPS which is secure FTP and secure FTP is provided by the FTP daemon (pure-ftpd).

    FTPS = FTP User
    SFTP = SSH User.
     

Share This Page