subject:"Bug#921346\: rssh update removes setuid flag from \/usr\/lib\/rssh\/rssh_chroot

Bug#921346: rssh update removes setuid flag from /usr/lib/rssh/rssh_chroot_helper

2019-02-04 Thread Russ Allbery

Miguel Cruz  writes:

> Applied the update yesterday. It removed +s from
> /usr/lib/rssh/rssh_chroot_helper which broke chroot functionality. In
> the log we started getting these messages when an inbound connection was
> attempted:
> Feb  4 13:38:08 wdc-aa-04 rssh_chroot_helper[12309]: new session for backup-
> dev01, UID=758Feb  4 13:38:08 wdc-aa-04 rssh_chroot_helper[12309]: chroot() 
> failed, 5:
> Operation not permitted
> This command resolved it:

> chmod +s /usr/lib/rssh/rssh_chroot_helper

If you manually chmod that file, each upgrade will reset the permissions.
You need to either run dpkg-reconfigure rssh and respond to the debconf
prompt saying that you want it to be setuid, or you need to use
dpkg-statoverride.

-- 
Russ Allbery (r...@debian.org)

Bug#921346: rssh update removes setuid flag from /usr/lib/rssh/rssh_chroot_helper

2019-02-04 Thread Miguel Cruz

Package: rssh
Version: 2.3.4-4+deb8u1

Applied the update yesterday. It removed +s from
/usr/lib/rssh/rssh_chroot_helper which broke chroot functionality. In
the log we started getting these messages when an inbound connection was
attempted:
Feb  4 13:38:08 wdc-aa-04 rssh_chroot_helper[12309]: new session for backup-
dev01, UID=758Feb  4 13:38:08 wdc-aa-04 rssh_chroot_helper[12309]: chroot() 
failed, 5:
Operation not permitted
This command resolved it:

chmod +s /usr/lib/rssh/rssh_chroot_helper

Bug#921346: rssh update removes setuid flag from /usr/lib/rssh/rssh_chroot_helper

Bug#921346: rssh update removes setuid flag from /usr/lib/rssh/rssh_chroot_helper

2 matches

Site Navigation

Mail list logo

Footer information