Date: Tue, 28 Jul 1998 07:46:10 -0700 (PDT) From: asami@cs.berkeley.edu (Satoshi Asami) To: committers@freebsd.org Subject: ssh-agent and chroot Message-ID: <199807281446.HAA21878@silvia.HIP.Berkeley.EDU>
next in thread | raw e-mail | index | archive | help
Hi, Is it possible to get ssh to do X11 forwarding in a chrooted environment? (This is on the package building machine, paddock.) As far as I can tell, it needs /tmp/ssh-asami/* to be visible for X11 forwarding to work. I tried hardlinking the socket but /tmp is not in the same filesystem as the chrootdir. I tried symlinking /tmp/ssh-asami into the chrooted /tmp but sshd complains that the mode is not right: === Remote: * Remote error: Agent socket creation:Bad modes/owner for directory '/tmp/ssh-asami' (modes are 120777, should be 041777) Remote: * Remote error: Authentication fowarding disabled. Warning: Remote host denied authentication agent forwarding. === It is apparently checking the mode of the symlink, not the directory it's pointing to. I can't change the mode of the symlink, so this doesn't work. So, I guess my question is, is it possible to change the directory ssh creates the agent sockets (/tmp/ssh-agent) somehow? Short of hacking the source, it is. (I don't want to change sshd's behavior just so I can build some packages on paddock....) Satoshi
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199807281446.HAA21878>