On Fri, Aug 15, 2003 at 12:22:50AM +0200, Werner Schalk wrote: > Aug 14 16:09:23 susi pam_chroot[2721]: session: reading config file > (/etc/security/chroot.conf) > Aug 14 16:09:23 susi pam_chroot[2721]: session: found chroot_dir > "/home/pmuster" for user "pmuster" > Aug 14 16:09:23 susi pam_chroot[2721]: session: chroot(/home/pmuster): > Operation not permitted > Aug 14 16:09:23 susi pam_chroot[2721]: session: returning failure > Aug 14 16:09:23 susi sshd[2721]: fatal: PAM session setup failed[14]: Cannot > make/remove an entry for the specified session > > Any ideas what might cause this? Actually I have created a basic file system > for that user and a "su - pmuster" works fine (no chrooted environment > then!). Any hints? The pam_chroot module performs the chroot() during the session setup. Depending on which version of sshd you have, and whether or not privilege separation is in use, sshd may not be running as the superuser when it calls pam_open_session (typically this is because it has already dropped privileges and assumed the user's UID). Because superuser privileges are required for chroot() to succeed, the module fails. Cheers, Nalin _______________________________________________ Pam-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/pam-list
