Re: [Jailkit-users] is it possible to "sudo su

Re: [Jailkit-users] is it possible to "sudo su - user" to a jailkit user

From:

Marcus

Subject:

Re: [Jailkit-users] is it possible to "sudo su - user" to a jailkit user?

Date:

Mon, 3 Jun 2013 09:41:07 -0400

Thanks, Richard - I really appreciate your help. Here is what I see when doing "su jane"

Jun 3 13:34:56 ip-10-29-233-97 su[20419]: Successful su for jane by root

Jun 3 13:34:56 ip-10-29-233-97 su[20419]: + /dev/pts/2 root:jane

Jun 3 13:34:56 ip-10-29-233-97 su[20419]: pam_unix(su:session): session opened for user jane by root(uid=0)

Jun 3 13:34:56 ip-10-29-233-97 jk_chrootsh[20420]: now entering jail /home/jail for user jane (1002) with arguments

and if I do "su - jane"

Jun 3 13:36:42 ip-10-29-233-97 su[20424]: Successful su for jane by root

Jun 3 13:36:42 ip-10-29-233-97 su[20424]: + /dev/pts/2 root:jane

Jun 3 13:36:42 ip-10-29-233-97 su[20424]: pam_unix(su:session): session opened for user jane by root(uid=0)

Jun 3 13:36:42 ip-10-29-233-97 jk_chrootsh[20425]: abort, jk_chrootsh is called as -su

Jun 3 13:36:42 ip-10-29-233-97 su[20424]: pam_unix(su:session): session closed for user jane

That error is coming from the section of code I highlighted below. I'm using 2.16 - is that the same version you are on? I'm using Ubuntu 12.04 64-bit with all the latest updates.

It also looks like when I log in as "jane" via SSH that only /etc/bash.bashrc is running and never /etc/profile - so I'm getting ready to look through the code and see if jk_chrootsh should be passing something to bash to tell it whether it is a login shell or not.

On Jun 3, 2013, at 5:32 AM, Richard Scott <address@hidden> wrote:

Hi,

What is in your /var/log/messages?
I have this on a successful run of "su - richard":
Jun 3 10:31:19 fps1 jk_chrootsh[3411]: now entering jail /home/scott for user richard (1500) with arguments
Does yours show any errors?
Thanks,
Rich