Updated May 20, 2003
Created May 20, 2003

Autogenerated Site Map
Search this Site!:
Search this site powered by FreeFind
Here we attempt to place bash and sshd inside a chroot jail -- currently I'm not concerned so much with making it secure as I am more interested in locating all the files necessary to support sshd -- i.e. so it can be transported possibly to a floppy based linux distro, a cdrom based linux distro, or to "behind the scenes" in an installation.

I started off with my chroot-bash.html page and the success I had with working with RHL9's openssh. This now (on RH80) will run just fine in a chroot jail -- this probably isn't what you want on a real system, but I'm doing this so I can investigate sshd. I had problems with the password, I copied in passwd and couldn't change the password either -- I ran strace and found that I didn't have /usr/lib/libcrack* and /usr/lib/crack*, I copied those in and then passwd worked -- also I can now specify my password when I ssh in. So extras here you'll see are passwd and strace, you can delete those. The following totals 13M. For RHL9 I rebuilt openssh --without-pam, and I was able to do away with all the pam stuff you see below. I can do the same for RH80 (what I'm currently playing with) but I have the info I need for right this moment. 
.
./etc
./etc/ssh
./etc/ssh/ssh_host_key
./etc/ssh/ssh_host_key.pub
./etc/ssh/ssh_host_rsa_key
./etc/ssh/ssh_host_rsa_key.pub
./etc/ssh/ssh_host_dsa_key
./etc/ssh/ssh_host_dsa_key.pub
./etc/ssh/sshd_config
./etc/ssh/moduli
./etc/security
./etc/security/access.conf
./etc/security/chroot.conf
./etc/security/console.apps
./etc/security/console.apps/up2date-config
./etc/security/console.apps/authconfig
./etc/security/console.apps/halt
./etc/security/console.apps/poweroff
./etc/security/console.apps/reboot
./etc/security/console.apps/kbdrate
./etc/security/console.apps/setup
./etc/security/console.apps/up2date
./etc/security/console.apps/up2date-nox
./etc/security/console.perms
./etc/security/group.conf
./etc/security/limits.conf
./etc/security/pam_env.conf
./etc/security/time.conf
./etc/pam.d
./etc/pam.d/other
./etc/pam.d/sshd
./etc/pam.d/passwd
./etc/pam.d/system-auth
./etc/pam.d/authconfig-gtk
./etc/pam.d/authconfig
./etc/pam.d/su
./etc/pam.d/halt
./etc/pam.d/poweroff
./etc/pam.d/reboot
./etc/pam.d/redhat-config-rootpassword
./etc/pam.d/redhat-config-language
./etc/pam.d/redhat-config-proc
./etc/pam.d/redhat-config-keyboard
./etc/pam.d/redhat-config-users
./etc/pam.d/redhat-logviewer
./etc/pam.d/dateconfig
./etc/pam.d/redhat-config-date
./etc/pam.d/redhat-config-time
./etc/pam.d/redhat-config-soundcard
./etc/pam.d/redhat-config-mouse
./etc/pam.d/up2date-config
./etc/pam.d/chfn
./etc/pam.d/chsh
./etc/pam.d/login
./etc/pam.d/kbdrate
./etc/pam.d/ppp
./etc/pam.d/redhat-cdinstall-helper
./etc/pam.d/redhat-config-packages
./etc/pam.d/redhat-install-packages
./etc/pam.d/smtp
./etc/pam.d/setup
./etc/pam.d/sudo
./etc/pam.d/up2date
./etc/pam.d/internet-druid
./etc/pam.d/up2date-nox
./etc/pam.d/hwbrowser
./etc/pam.d/xmtr
./etc/pam.d/printconf
./etc/pam.d/neat
./etc/pam.d/redhat-config-network-cmd
./etc/pam.d/redhat-config-network
./etc/pam.d/xscreensaver
./etc/pam.d/xserver
./etc/pam.d/redhat-config-network-druid
./etc/pam.d/printconf-tui
./etc/pam.d/redhat-config-printer
./etc/pam.d/redhat-config-printer-tui
./etc/pam.d/printconf-gui
./etc/pam.d/printtool
./etc/pam.d/redhat-config-printer-gui
./etc/pam.d/redhat-config-securitylevel
./etc/pam.d/redhat-config-xfree86
./etc/pam.d/redhat-switch-printer
./etc/pam.d/redhat-switch-printer-nox
./etc/pam.d/redhat-switchmail
./etc/pam.d/redhat-switchmail-nox
./etc/pam.d/redhat-config-services
./etc/pam.d/serviceconf
./etc/pam.d/xdm
./etc/pam.d/gdmsetup
./etc/pam.d/gdm
./etc/pam.d/redhat-config-bind
./etc/pam.d/gdm-autologin
./etc/pam.d/bindconf
./etc/pam.d/redhat-config-httpd
./etc/pam.d/apacheconf
./etc/pam.d/cups
./etc/pam.d/redhat-config-nfs
./etc/pam.d/ethereal
./etc/pam.d/screen
./etc/pam.d/vsftpd
./etc/pam.d/samba
./etc/hosts
./etc/nsswitch.conf
./etc/shells
./etc/motd
./etc/shadow
./etc/hosts.allow
./etc/hosts.deny
./etc/rc.d
./etc/rc.d/init.d
./etc/rc.d/init.d/sshd
./etc/rc.d/init.d/functions
./etc/passwd
./etc/group
./etc/.pwd.lock
./lib
./lib/security
./lib/security/pam_access.so
./lib/security/pam_chroot.so
./lib/security/pam_console.so
./lib/security/pam_cracklib.so
./lib/security/pam_deny.so
./lib/security/pam_env.so
./lib/security/pam_filter
./lib/security/pam_filter/upperLOWER
./lib/security/pam_filter.so
./lib/security/pam_ftp.so
./lib/security/pam_group.so
./lib/security/pam_issue.so
./lib/security/pam_krb5afs.so
./lib/security/pam_krb5.so
./lib/security/pam_lastlog.so
./lib/security/pam_ldap.so
./lib/security/pam_limits.so
./lib/security/pam_listfile.so
./lib/security/pam_localuser.so
./lib/security/pam_mail.so
./lib/security/pam_mkhomedir.so
./lib/security/pam_motd.so
./lib/security/pam_nologin.so
./lib/security/pam_permit.so
./lib/security/pam_pwdb.so
./lib/security/pam_rhosts_auth.so
./lib/security/pam_rootok.so
./lib/security/pam_securetty.so
./lib/security/pam_shells.so
./lib/security/pam_smb_auth.so
./lib/security/pam_stack.so
./lib/security/pam_stress.so
./lib/security/pam_tally.so
./lib/security/pam_time.so
./lib/security/pam_timestamp.so
./lib/security/pam_unix_acct.so
./lib/security/pam_unix_auth.so
./lib/security/pam_unix_passwd.so
./lib/security/pam_unix_session.so
./lib/security/pam_unix.so
./lib/security/pam_userdb.so
./lib/security/pam_warn.so
./lib/security/pam_wheel.so
./lib/security/pam_xauth.so
./lib/security/pam_winbind.so
./lib/libnss1_compat-2.2.93.so
./lib/libnss1_compat.so.1
./lib/libnss1_dns-2.2.93.so
./lib/libnss1_dns.so.1
./lib/libnss1_files-2.2.93.so
./lib/libnss1_files.so.1
./lib/libnss1_nis-2.2.93.so
./lib/libnss1_nis.so.1
./lib/libnss_compat-2.2.93.so
./lib/libnss_compat.so.1
./lib/libnss_compat.so.2
./lib/libnss_dns-2.2.93.so
./lib/libnss_dns.so.1
./lib/libnss_dns.so.2
./lib/libnss_files-2.2.93.so
./lib/libnss_files.so.1
./lib/libnss_files.so.2
./lib/libnss_hesiod-2.2.93.so
./lib/libnss_hesiod.so.2
./lib/libnss_ldap-2.2.90.so
./lib/libnss_ldap.so.2
./lib/libnss_nis-2.2.93.so
./lib/libnss_nisplus-2.2.93.so
./lib/libnss_nisplus.so.2
./lib/libnss_nis.so.1
./lib/libnss_nis.so.2
./lib/ld-linux.so.2
./lib/ld-2.3.2.so
./lib/libc.so.6
./lib/libc-2.3.2.so
./lib/libdl.so.2
./lib/libdl-2.3.2.so
./lib/libtermcap.so.2
./lib/libtermcap.so.2.0.8
./lib/libcrypto.so.0.9.6b
./lib/libcrypto.so.2
./lib/libacl.so.1
./lib/libacl.so.1.0.0
./lib/libattr.so.1
./lib/libattr.so.1.0.0
./lib/libresolv.so.2
./lib/libresolv-2.3.2.so
./lib/libutil.so.1
./lib/libutil-2.3.2.so
./lib/libnsl.so.1
./lib/libnsl-2.3.2.so
./lib/libkrb5.so.3
./lib/libkrb5.so.3.1
./lib/libk5crypto.so.3
./lib/libk5crypto.so.3.0
./lib/libcom_err.so.3
./lib/libcom_err.so.3.0
./lib/libssl.so.2
./lib/libssl.so.0.9.6b
./lib/libpam.so.0
./lib/libpam.so.0.75
./lib/libcrypt.so.1
./lib/libcrypt-2.3.2.so
./lib/libpam_misc.so.0
./lib/libpam_misc.so.0.75
./bin
./bin/ash
./bin/bash
./bin/bsh
./bin/csh
./bin/sh
./bin/tcsh
./bin/ls
./bin/chmod
./bin/touch
./bin/kill
./bin/usleep
./bin/rm
./dev
./dev/pt0
./dev/pt1
./dev/pt10
./dev/pt11
./dev/pt12
./dev/pt13
./dev/pt14
./dev/pt15
./dev/pt2
./dev/pt3
./dev/pt4
./dev/pt5
./dev/pt6
./dev/pt7
./dev/pt8
./dev/pt9
./dev/ptmx
./dev/pts
./dev/ptya0
./dev/ptya1
./dev/ptya2
./dev/ptya3
./dev/ptya4
./dev/ptya5
./dev/ptya6
./dev/ptya7
./dev/ptya8
./dev/ptya9
./dev/ptyaa
./dev/ptyab
./dev/ptyac
./dev/ptyad
./dev/ptyae
./dev/ptyaf
./dev/ptyb0
./dev/ptyb1
./dev/ptyb2
./dev/ptyb3
./dev/ptyb4
./dev/ptyb5
./dev/ptyb6
./dev/ptyb7
./dev/ptyb8
./dev/ptyb9
./dev/ptyba
./dev/ptybb
./dev/ptybc
./dev/ptybd
./dev/ptybe
./dev/ptybf
./dev/ptyc0
./dev/ptyc1
./dev/ptyc2
./dev/ptyc3
./dev/ptyc4
./dev/ptyc5
./dev/ptyc6
./dev/ptyc7
./dev/ptyc8
./dev/ptyc9
./dev/ptyca
./dev/ptycb
./dev/ptycc
./dev/ptycd
./dev/ptyce
./dev/ptycf
./dev/ptyd0
./dev/ptyd1
./dev/ptyd2
./dev/ptyd3
./dev/ptyd4
./dev/ptyd5
./dev/ptyd6
./dev/ptyd7
./dev/ptyd8
./dev/ptyd9
./dev/ptyda
./dev/ptydb
./dev/ptydc
./dev/ptydd
./dev/ptyde
./dev/ptydf
./dev/ptye0
./dev/ptye1
./dev/ptye2
./dev/ptye3
./dev/ptye4
./dev/ptye5
./dev/ptye6
./dev/ptye7
./dev/ptye8
./dev/ptye9
./dev/ptyea
./dev/ptyeb
./dev/ptyec
./dev/ptyed
./dev/ptyee
./dev/ptyef
./dev/ptyp0
./dev/ptyp1
./dev/ptyp2
./dev/ptyp3
./dev/ptyp4
./dev/ptyp5
./dev/ptyp6
./dev/ptyp7
./dev/ptyp8
./dev/ptyp9
./dev/ptypa
./dev/ptypb
./dev/ptypc
./dev/ptypd
./dev/ptype
./dev/ptypf
./dev/ptyq0
./dev/ptyq1
./dev/ptyq2
./dev/ptyq3
./dev/ptyq4
./dev/ptyq5
./dev/ptyq6
./dev/ptyq7
./dev/ptyq8
./dev/ptyq9
./dev/ptyqa
./dev/ptyqb
./dev/ptyqc
./dev/ptyqd
./dev/ptyqe
./dev/ptyqf
./dev/ptyr0
./dev/ptyr1
./dev/ptyr2
./dev/ptyr3
./dev/ptyr4
./dev/ptyr5
./dev/ptyr6
./dev/ptyr7
./dev/ptyr8
./dev/ptyr9
./dev/ptyra
./dev/ptyrb
./dev/ptyrc
./dev/ptyrd
./dev/ptyre
./dev/ptyrf
./dev/ptys0
./dev/ptys1
./dev/ptys2
./dev/ptys3
./dev/ptys4
./dev/ptys5
./dev/ptys6
./dev/ptys7
./dev/ptys8
./dev/ptys9
./dev/ptysa
./dev/ptysb
./dev/ptysc
./dev/ptysd
./dev/ptyse
./dev/ptysf
./dev/ptyt0
./dev/ptyt1
./dev/ptyt2
./dev/ptyt3
./dev/ptyt4
./dev/ptyt5
./dev/ptyt6
./dev/ptyt7
./dev/ptyt8
./dev/ptyt9
./dev/ptyta
./dev/ptytb
./dev/ptytc
./dev/ptytd
./dev/ptyte
./dev/ptytf
./dev/ptyu0
./dev/ptyu1
./dev/ptyu2
./dev/ptyu3
./dev/ptyu4
./dev/ptyu5
./dev/ptyu6
./dev/ptyu7
./dev/ptyu8
./dev/ptyu9
./dev/ptyua
./dev/ptyub
./dev/ptyuc
./dev/ptyud
./dev/ptyue
./dev/ptyuf
./dev/ptyv0
./dev/ptyv1
./dev/ptyv2
./dev/ptyv3
./dev/ptyv4
./dev/ptyv5
./dev/ptyv6
./dev/ptyv7
./dev/ptyv8
./dev/ptyv9
./dev/ptyva
./dev/ptyvb
./dev/ptyvc
./dev/ptyvd
./dev/ptyve
./dev/ptyvf
./dev/ptyw0
./dev/ptyw1
./dev/ptyw2
./dev/ptyw3
./dev/ptyw4
./dev/ptyw5
./dev/ptyw6
./dev/ptyw7
./dev/ptyw8
./dev/ptyw9
./dev/ptywa
./dev/ptywb
./dev/ptywc
./dev/ptywd
./dev/ptywe
./dev/ptywf
./dev/ptyx0
./dev/ptyx1
./dev/ptyx2
./dev/ptyx3
./dev/ptyx4
./dev/ptyx5
./dev/ptyx6
./dev/ptyx7
./dev/ptyx8
./dev/ptyx9
./dev/ptyxa
./dev/ptyxb
./dev/ptyxc
./dev/ptyxd
./dev/ptyxe
./dev/ptyxf
./dev/ptyy0
./dev/ptyy1
./dev/ptyy2
./dev/ptyy3
./dev/ptyy4
./dev/ptyy5
./dev/ptyy6
./dev/ptyy7
./dev/ptyy8
./dev/ptyy9
./dev/ptyya
./dev/ptyyb
./dev/ptyyc
./dev/ptyyd
./dev/ptyye
./dev/ptyyf
./dev/ptyz0
./dev/ptyz1
./dev/ptyz2
./dev/ptyz3
./dev/ptyz4
./dev/ptyz5
./dev/ptyz6
./dev/ptyz7
./dev/ptyz8
./dev/ptyz9
./dev/ptyza
./dev/ptyzb
./dev/ptyzc
./dev/ptyzd
./dev/ptyze
./dev/ptyzf
./dev/ttyp0
./dev/ttyp1
./dev/ttyp2
./dev/ttyp3
./dev/ttyp4
./dev/ttyp5
./dev/ttyp6
./dev/ttyp7
./dev/ttyp8
./dev/ttyp9
./dev/null
./dev/urandom
./sbin
./sbin/initlog
./sbin/consoletype
./sbin/pidof
./sbin/killall5
./usr
./usr/sbin
./usr/sbin/sshd
./usr/bin
./usr/bin/ssh-keygen
./usr/bin/passwd
./usr/bin/strace
./usr/lib
./usr/lib/libz.so.1
./usr/lib/libz.so.1.1.4
./usr/lib/libssl3.so
./usr/lib/libssl.a
./usr/lib/libssl.so
./usr/lib/libuser.so.1
./usr/lib/libuser.so.1.1.1
./usr/lib/libgobject-2.0.so.0
./usr/lib/libgobject-2.0.so.0.0.6
./usr/lib/libgmodule-2.0.so.0
./usr/lib/libgmodule-2.0.so.0.0.6
./usr/lib/libglib-2.0.so.0
./usr/lib/libglib-2.0.so.0.0.6
./usr/lib/libpopt.so.0
./usr/lib/libpopt.so.0.0.0
./usr/lib/libcrack.so.2
./usr/lib/libcrack.so.2.7
./usr/lib/cracklib_dict.hwm
./usr/lib/cracklib_dict.pwd
./usr/lib/cracklib_dict.pwi
./usr/kerberos
./usr/kerberos/lib
./usr/kerberos/lib/libkrb5.so.3
./usr/kerberos/lib/libkrb5.so.3.1
./usr/kerberos/lib/libk5crypto.so.3
./usr/kerberos/lib/libk5crypto.so.3.0
./usr/kerberos/lib/libcom_err.so.3
./usr/kerberos/lib/libcom_err.so.3.0
./var
./var/lock
./var/lock/subsys
./var/lock/subsys/sshd
./var/empty
./var/empty/sshd
./var/run
./var/run/sshd.pid
./proc
./root
./root/.bash_history
I might as well list the problems I overcame on this page so others can move forward:

passwd: Module is unknown -- was missing /usr/lib/libcrack* and /usr/lib/crack* -- see above file listing.

passwd: Authentication token manipulation error -- missing bunch of junk in /etc/pam.d -- all I had was /etc/pam.d/other

dup2: Bad file descriptor -- I didn't have /proc mounted -- "mkdir proc; mount -t proc proc proc"

PRNG is not seeded -- this needed /dev/urandom -- others might need /dev/random or ~/.rnd so I've heard
Search this Site!:
Search this site powered by FreeFind
Homepage: http://www.cpqlinux.com
Site Map: http://www.cpqlinux.com/sitemap.html