Difference between revisions of "Jailkit"
Jump to navigation
Jump to search
Tags: Mobile web edit, Mobile edit |
|||
(9 intermediate revisions by the same user not shown) | |||
Line 2: | Line 2: | ||
* Installation: <code>apt install jailkit</code> | * Installation: <code>apt install jailkit</code> | ||
− | * Configuration: <code>/etc/jailkit/jk_init.ini</code> | + | * Configuration: <code>/etc/jailkit/[[jk_init.ini]]</code> |
Line 21: | Line 21: | ||
https://olivier.sessink.nl/jailkit/howtos_sftp_scp_only.html | https://olivier.sessink.nl/jailkit/howtos_sftp_scp_only.html | ||
− | jk_init -v -j /PATH_TO_JAIL sftp | + | jk_init -v -j /PATH_TO_JAIL [[sftp]] [[scp]] |
+ | jk_init -v -j /PATH_TO_JAIL jk_lsh | ||
+ | jk_jailuser -m -j /PATH_TO_JAIL USERNAME | ||
+ | |||
+ | Edit <code>/PATH_TO_JAIL/etc/jailkit/jk_lsh.ini</code> file: | ||
+ | [USERNAME] | ||
+ | paths= /usr/bin, /usr/lib/ | ||
+ | executables= /usr/bin/scp, /usr/lib/sftp-server | ||
+ | |||
+ | |||
+ | |||
-j --jail /YOUR/JAIL_PATH | -j --jail /YOUR/JAIL_PATH | ||
== Activities == | == Activities == | ||
* Read https://www.techrepublic.com/article/how-to-create-an-ssh-jailed-user-on-debian-9/ | * Read https://www.techrepublic.com/article/how-to-create-an-ssh-jailed-user-on-debian-9/ | ||
− | + | * <code>[[useradd]]</code> | |
== Related terms == | == Related terms == | ||
Line 34: | Line 44: | ||
== See also == | == See also == | ||
+ | * {{jails}} | ||
* {{OpenSSH}} | * {{OpenSSH}} | ||
[[Category:Security]] | [[Category:Security]] |
Latest revision as of 06:41, 17 December 2020
- Installation:
apt install jailkit
- Configuration:
/etc/jailkit/jk_init.ini
jk_check jk_chrootlaunch jk_chrootsh jk_cp jk_init jk_jailuser jk_list jk_lsh jk_socketd jk_update
jk_init -v /PATH_TO_JAIL netutils basicshell jk_lsh ssh scp sftp jk_jailuser -m -j /PATH_TO_JAIL YOUR_USERNAME
https://olivier.sessink.nl/jailkit/howtos_sftp_scp_only.html
jk_init -v -j /PATH_TO_JAIL sftp scp jk_init -v -j /PATH_TO_JAIL jk_lsh jk_jailuser -m -j /PATH_TO_JAIL USERNAME
Edit /PATH_TO_JAIL/etc/jailkit/jk_lsh.ini
file:
[USERNAME] paths= /usr/bin, /usr/lib/ executables= /usr/bin/scp, /usr/lib/sftp-server
-j --jail /YOUR/JAIL_PATH
Activities[edit]
Related terms[edit]
See also[edit]
chroot
,jailkit
,rbash
,systemd-nspawn
- OpenSSH (changelog):
/etc/ssh/sshd_config
|/etc/ssh/ssh_config
|~/.ssh/
|openSSL | sshd logs
|sftp
|scp
|authorized_keys
|ssh-keygen
|ssh-keyscan
|ssh-add
|ssh-agent
|ssh
|Ssh -O stop
|ssh-copy-id
|CheckHostIP
|UseKeychain
, OpenSSF
Advertising: