General :: Chroot Error - Cannot Change Root Directory To /jail - Operation Not Permitted
Apr 18, 2011
I am trying to create a jailed shell for a user Don($UID '500') using my own method(I don't want to use any ready-made "jailkit"). The user don should get a home directory /jail/don instead of /home/don when he login via SSH (So that he will not able to see any other files/directories on the system)
This is what I have done.
Quote:
Code:
It works without any issue ....Home directory changes to /jail/don when I ssh to the system as user don. ie: #ssh don@192.168.0.66
Then I added a chroot command to this code.
Code:
Unfortunately , now I am getting an error message saying that "chroot: cannot change root directory to /jail: Operation not permitted" .. I am not sure how to rectify this error... Is my approach correct to get a jailed shell using /etc/profile file ?
View 8 Replies
ADVERTISEMENT
Feb 20, 2010
I updated my lucid alpha testing (64 bit)install after which I am unable to boot into any of my Ubuntu installs(sda11 has a dedicated Burg partition and sda10 has the stable karmic (32 bit)install and sda9 has the testing lucid install) Now I am trying to recover (rewrite Burg or at least grub2 on the MBR) my installs
This is what happens
custom@custom:~$ sudo mount /dev/sda10 /mnt
custom@custom:~$ sudo mount -o bind /dev /mnt/dev
custom@custom:~$ chroot/mnt
[code]....
i tried a slightly different code with little success
custom@custom:~$ sudo mount /dev/sda10 /mnt
mount: /dev/sda10 already mounted or /mnt busy
mount: according to mtab, /dev/sda10 is already mounted on /mnt
[code]....
I also ran a whereis for bash and it also is there
View 9 Replies
View Related
Mar 27, 2010
chroot in two mini distros (Tiny Core and SliTaz): chroot jail appears 'blind'. Chroot can't find any files in the jail and exit with error code. Example (ugly):
Code:
# mkdir /mnt/test
# mkdir /mnt/test/bin
# mkdir /mnt/test/dev
# mkdir /mnt/test/proc
# mkdir /mnt/test/lib
# mount /dev/hdb1 /mnt/test
# mount -t proc none /mnt/test/proc
[Code]...
chroot: cannot execute /bin/bash: No such file or directory Where is the problem?
View 4 Replies
View Related
Oct 6, 2010
I am trying to install a third party driver and the provided makefile makes a call to insmod. Whenever I try to install this I run "su", so I am root and should have permissions. However, when I run "make install" I get the following output:
Code:
# make install
Unloading any instances of foo module
Loading new foo into running kernel
insmod: error inserting 'foo.ko': -1 Operation not permitted
make: *** [install] Error 1
Like I said before, I'm doing this as root, so I don't see how this is possible. Additionally, every time I try to do this it seems to cause a lot of damage to whatever kernel I'm currently booted in; USB and ethernet (and hence the Internet) stop working and I have to wipe the kernel and reinstall it.
View 10 Replies
View Related
May 10, 2010
how to prepare (before issuing the chroot command) directory links out of a chroot environment. I have done a bunch of reading, but not yet experimenting, about chroot. I mostly understand its main purpose of creating an environment in which it is safer to run untrusted software. But I want to use it for some other things, involving trusted software.
I want to create a directory tree in which the various top level directories are links to various directories in the main directory tree. For example, when running on a Debian based 64 bit system (where /lib has 64 bit .so files) I might want to create a root in which /lib links to the directory containing 32 bit .so files (same as /lib32 normally links to).
IIUC, chroot blocks soft links from getting outside. So I could create a directory containing lib as the desired soft link, but if I did chroot to that directory, the link would no longer point where I wanted. Is that correct? IIUC, I can't do a hard link to a directory. Is that correct? How would you create a directory link that would point out of a chroot "jail"? (Yes I do understand that is contrary to the common purpose for a chroot).
From reading, again not yet experimenting, I think mounting an aufs might do it. It looks like aufs might be used to mount a directory into another directory. Is that correct? Am I missing some easier way to mount a directory into a directory? Would such an aufs mount link out of the chroot? Or suffer the same fate as a soft link?
View 3 Replies
View Related
May 1, 2011
i see this error in system.log
May 1 03:15:01 master cp: error processing extended attributes: Operation not permitted
May 1 03:15:02 master cp: error processing extended attributes: Operation not permitted
May 1 03:15:02 master 700.daily.server.cyrus: Error: /etc/MailServicesOther.plist postfix does not contain a dictionary with key log_rolling_days.
[Code]...
View 1 Replies
View Related
Jun 28, 2011
I created a chroot jail in /SECURITY/Jail. But when I used the command 'sudo chroot /SECURITY/Jail' to enter the fake root, I got an error message likegroups: cannot find name for group ID 105groups: cannot find name for group ID 119.
View 1 Replies
View Related
Oct 6, 2010
On a 64 bit CentOS host I am using script make_chroot_jail.sh to put a user in a jail, not permitting it to see anything expect it's home at /home/jail/home/user1.
I did it typing this:
After, when trying to connect to user1 first i was getting an error like:
I have fixed this by copying some missed libraries:
But now, when trying to connect to user1 typing su user1 and then typing it's password, i am getting this error: could not open session
So the question is how to connect to user1 in this situation?
Here are the permissions of some files, this might be helpful in order to provide a solution:
After some modifications i managed to connect to user1, but the session closes immediately! I guess this a PAM issue, however cant find a way to fix it.
Here the log entry for close action from /val/log/secure:
What makes the session to exit immediately after launching?
View 1 Replies
View Related
Apr 20, 2010
I would like to create a logon script, for specific user, under ssh connection, to backup several directories in a USB device; this backup will run when the device was plugged in and the user logs in server. My knowledge of linux isn't very deeply now, and some questions are in my head. I would like to make this in a chroot jail, and the user log in through ssh connection doesn't have to make nothing, the logon script will mount the USB device and make the backup (using rsync or whatever), and exit the ssh connection when it finish.
Anyway the questions are:
- is possible that a user in a chroot jail mount a USB device?
- from this jail, the directories outside of the jail could be available or need to be bind or something for this task?
- it will be better to "jail" all the directories to backup, inside de chroot path (almost would be samba sharing for Windows clients)?
View 2 Replies
View Related
Dec 12, 2010
I'm running CentOS 5.3 in an openVZ container, and I'm receiving "operation not permitted" errors from Nmap.
Note: Host seems down. If it is really up, but blocking our ping probes, try -PN Nmap done: 1 IP address (0 hosts up) scanned in 3.15 seconds
I have no iptables rules set.
How can I get this working?
View 1 Replies
View Related
Mar 16, 2010
How safe is a chroot if it is locked down? how difficult is building a secure chroot? Does anyone know of any working tutorials for setting up a secure chroot? i only need it to run two applications, a torrent client and a VPN client. I'm hoping to set one up on Ubuntu Karmic. also, I found this, under 'section 4' he gave no write permissions to any non root user, can this be extended upon? which directories do limited users require write access to? what else would you consider essential to security inside a chroot?
View 1 Replies
View Related
Oct 4, 2010
I've been trying to mount ftp on a directory, using curlftpfs, but when I run:
Code:
curlftpfs user:pass@server /mnt/mount-point
I get the error:
Code:
fuse: device not found, try 'modprobe fuse' first
And when I run it, I get:
Code:
WARNING: Deprecated config file /etc/modprobe.conf, all config files belong into /etc/modprobe.d/.
FATAL: Could not load /lib/modules/2.6.32-dyomin.1/modules.dep: No such file or directory
Code:
mknod /dev/fuse c 10 229
After that when I run the mount command ) get the error:
Code:
fuse: failed to open /dev/fuse: Operation not permitted
View 4 Replies
View Related
Feb 26, 2010
I am having a problem when I try to login as su.I type the command SU and then the password as normal and I get su: cannot set groups: Operation not permitted I am not sure what could of caused this error and how to fix it.
View 2 Replies
View Related
Oct 14, 2010
I`ve been given a project to design a program that will interface with a hardware device through the parallel port.And so far it`s not going go. I managed to write the programe an compiled it, but when runing it the compiler says: 'changing ownership of'and then the file name then it continues to say, 'operation not permitted'.
View 9 Replies
View Related
Apr 6, 2010
I run a small site and today I've discovered that my site is down. I found that cPanel has flagged the account suspended even though I haven't got any quotas on the account. I don't know what went wrong. I've tried to unsuspend the account in WHM but a certain part of the function failed.
Quote:
safe_userchgid: chown: /home/crocbits/public_html: Operation not permitted at /scripts/cPScript/SafetyBits.pm line 93.
After searching the internet someone mentioned that the problem might lie in the permissions of the public_html folder. I had a look at the permissions and the folder had no permissions d----- When I try to chmod the folder I get this error:
Quote:
chmod: changing permissions of `public_html': Operation not permitted
I have no idea what to do next. All the files in the directory are locked too. I tried to move them but this command isn't allowed either. I ran these commands under the 'root' user in SSH.
View 11 Replies
View Related
Jan 19, 2010
what is chroot jail?
View 1 Replies
View Related
Aug 2, 2010
I am developing a java application that deals with the parallel port I used the parport library, I have the following problem: I am using netbeans 6.9 and linux redhat, when I run the code (java code that controls parallel port) from netbeans I get: "ioperm error: Operation not permitted" I used the "clean and build" function in Netbeans to create the jar file (test.jar) then I changed the permission of the test.jar to root using this command "chmod 4777 test.jar" and the test.jar file worked just fine as a stand alone file, but I still get the same error message when I try to run the program from Netbeans
View 1 Replies
View Related
Apr 16, 2010
I would like to create a logon script, for specific user, under ssh connection, to backup several directories in a USB device; this backup will run when the device was plugged in and the user logs in server. My knowledge of linux isn't very deeply now, and some questions are in my head. I would like to make this in a chroot jail, and the user log in through ssh connection doesn't have to make nothing, the logon script will mount the USB device and make the backup (using rsync or whatever), and exit the ssh connection when it finish.
But the questions are:
- is possible to a user in a chroot jail mount a USB device?
- from this jail, the directories outside of the jail could be available or need to be bind or something for this task?
- it will be better to "jail" all the directories to backup, inside de chroot path (almost would be samba sharing for Windows clients)?
View 1 Replies
View Related
Jul 16, 2010
im looking for info on chroot jail and if you can break out of it. does anyone know where to find info?
View 1 Replies
View Related
May 4, 2011
I want to make a sandbox for my music streaming server(subsonic). I was going to make a directory and chroot to it. I don't really have any room on my HD for new partitions. For the sandbox/chroot jail to be proper does it need to be on a seperate filesystem/mount point?
View 1 Replies
View Related
Apr 2, 2010
I have one requirement i.e I want to call the java file from the php function using shell_exec command , i am using the chroot jail concept , if i using this command i am getting the empty file because java environment is outside the chroot jail,so how to access the the files those are out side the chroot jail.
View 3 Replies
View Related
Oct 25, 2010
I'm setting up a network backup on a workstation here using Webmin. I'm backing up to a local FTP server. I set everything correctly (FTP credentials, directories, etc) but I get an error saying "Could not create file" and another saying "Cannot write: Operation not permitted"
View 1 Replies
View Related
Jul 18, 2010
I have a file named password in my home directory. I want to delete it.
Code:
:~$ rm password
rm: cannot remove `password': Operation not permitted
Code:
:~$ ls -l password
-rw-r--r-- 1 adit adit 8 2010-06-29 10:00 password
This is my home directory. I am the owner of this file. Still I can not delete this file.
View 4 Replies
View Related
Dec 16, 2010
I am trying to modify the user and group for a directory on my SD card, but I get an "Operation not permitted" error even when I'm signed in as root. I have the SD card auto mounted using:
Code:
root@ubuntu:/media# cat /etc/fstab
/dev/mmcblk0p1 /media/sd vfat auto,user,dmask=0000,fmask=0111 0 0
View 5 Replies
View Related
Jul 19, 2011
I just setup a server using ubuntu server edition also installed apache, php, mysql and phpmyadmin.. when i try to setup FTP permission via winscp i get the error /var/www/phpinfo.php: Operation not permitted. ans so on for other files present there..
View 3 Replies
View Related
Jul 24, 2011
I'm trying to setup ACL (access control lists) on my /var/www folder so myself and my roommate can work on a site together. I've installed ACL and added the acl option to fstab for the root (/), but whenever I try to setfacl, I still get
Quote:
setfacl: /var/www: Operation not permitted
I can however share folders in my /home directory so I guess it has to be that /var isn't getting the ACL option. Here is my fstab file:
Quote:
proc /proc proc nodev,noexec,nosuid,acl 0 0
/dev/mapper/franklin-root / ext4 errors=remount-ro,acl 0 1
/dev/sda1 /boot ext2 defaults,acl 0 2
/dev/mapper/franklin-swap_1 none
What am I missing?
View 1 Replies
View Related
Feb 16, 2010
I couldn't install everything during setup of my debian server, so I installed post setup through the Add/Remove Programs. My guess is there is so much installed that either DHCP is not setup properly or there is a firewall installed. My computer found an IP address from my router but cannot connect to the DNS service or ping my router. I type: ping 192.168.1.1 computer resp: "ping: sendmsg: Operation not permitted"
View 4 Replies
View Related
Aug 17, 2015
After upgrading to Debian 8, I'm having a bit of trouble with systemd, since I'm not used to it (seeing as it was all init when I started). I tried to use a tutorial to create a new service and one step in it was to run
Code: Select allsystemctl enable xxx.service
Unfortunately, every time I run systemctl - even without parameters - I get this error:
Code: Select allFailed to get D-Bus connection: Operation not permitted
View 5 Replies
View Related
Jun 14, 2011
Below is the oneliner that I am using to exclude all of "." hidden directories within the same directory.
Code:
cd find . -depth ( -wholename ./.* ) -prune -o -print | cpio -oav > /media/caca/extract/full$date.cpio
it works fine but when I extract the files from the full$date.cpio archive it appears to have worked but gives me permission errors:
Code:
cd /media/caca/extract
cpio -ivd < full061411.cpio
cpio: Selection_001.png: Cannot change mode to rw-r--r--: Operation not permitted
Selection_001.png
cpio: Selection_002.png: Cannot change mode to rw-r--r--: Operation not permitted
Selection_002.png
[Code]...
View 4 Replies
View Related
Nov 26, 2008
i have written one backup script in linux workstation.The backup script will do zipping files and moved to the backup directory(i,e /net/ts-bcn/sb_backup/sand). while moving zipped files to the backup directory i am getting some error like this #error:mv:failed to preserve ownership /net/ts-bcn/sb_backup/sand operation not permitted. i am getting the file owner and group owner as nfsnobody for the zipped files.
View 1 Replies
View Related
