Warning about Chrooted environments debian,ubuntu ...

Discussion in 'Installation/Configuration' started by hrvbid, Jun 18, 2008.

  1. hrvbid

    hrvbid New Member

    In several howtos the steps to have a chrooted environment are explained very well. An essential item urgent to regard belongs to the debian based distributions, like ubuntu, where in the last weeks mass of upgrades to SSH are performed because of the well known bug with the ssh keys.
    Everybody running her/his server with chrooted environments should update after openssh upgrade with the one essential step:

    cd /tmp
    wget "http://chrootssh.sourceforge.net/download/openssh-4.5p1-chroot.tar.bz2"
    tar xvfj openssh-4.5p1-chroot.tar.bz2
    cd openssh-4.5p1-chroot
    ./configure --exec-prefix=/usr --sysconfdir=/etc/ssh --with-pam
    make install
    /etc/init.d/ssh restart

    In case of ignoring that adaption, each user entering the system via ssh is n o t chrooted.
    For hopefully the majority, this note is only a reminder.

Share This Page