On 11/14/2013 05:52 PM, Miroslav Grepl wrote:
What raw AVC msgs are you getting?
What OS?
Hi,
As sson as I enter the password I get this in /var/log/secure:
Nov 15 06:57:34 sftphd sshd[11179]: fatal: safely_chroot: stat("/var/ftp/"): Permission denied
The home directory for the user is /var/ftp/pub (that's where it gets jailed in) and it is public_content_t as well.
Here's the AVC:
type=AVC msg=audit(1384513054.850:2835): avc: denied { getattr } for pid=11179 comm="sshd" path="/var/ftp" dev=sdb1 ino=2 scontext=unconfined_u:system_r:chroot_user_t:s0-s0:c0.c1023 tcontext=system_u:object_r:public_content_t:s0 tclass=dir
This is CentOS 6.4 fully patched.
Thanks, Jorge