Mailing List Archive: OpenSSH: Dev

Disabling lookup for /homedir

Index | Next | Previous | View Threaded

peteriva at googlemail

Jul 19, 2010, 1:14 AM

Post #1 of 5 (431 views)
Permalink

Disabling lookup for /homedir

Hi!

I am very new to OpenSSH but I've still read the manuals without any result
which can solve my problem - thats why i am contacting you.

I have a unix-machine with a subversion server running. authentication is
done with ldap and svn is done via ssh (svn+ssh://
my.server.com/my/repository).
I have a centralized authorized_keys for pub-key authentication via ssh and
users only can do svn.

I want to disable the lookup for a home-dir because i don't need it for svn.
when i disable the autofs (solaris) ssh tells me everytime i send a
svn-request "could not chdir..." but the command succeeds. that's not the
main problem: when i try svn with a tool like tortoise it fails because of
the missing home-dir - everything works fine when autofs is enabled.

To solve this behavior, i uncommented the part of the check for homedir in
session.c (the part where the output "Could not chdir home.." is defined)
but i am not sure if this is a "clean" way..but it works now. Is there a
"clean" method to fully disable the lookup for an existing home-dir in ssh?

Pete
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev [at] mindrot
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev

mouring at eviladmin

Jul 19, 2010, 8:46 AM

Post #2 of 5 (406 views)
Permalink

Re: Disabling lookup for /homedir [In reply to]

Umm.. Why don't you just set the home directory to / ? or /tmp ? Seems silly to have a home directory that isn't valid and the solutions is to "stop ssh from checking if it is valid".

- Ben

On Jul 19, 2010, at 3:14 AM, Peter Ivanov wrote:

> Hi!
>
> I am very new to OpenSSH but I've still read the manuals without any result
> which can solve my problem - thats why i am contacting you.
>
> I have a unix-machine with a subversion server running. authentication is
> done with ldap and svn is done via ssh (svn+ssh://
> my.server.com/my/repository).
> I have a centralized authorized_keys for pub-key authentication via ssh and
> users only can do svn.
>
> I want to disable the lookup for a home-dir because i don't need it for svn.
> when i disable the autofs (solaris) ssh tells me everytime i send a
> svn-request "could not chdir..." but the command succeeds. that's not the
> main problem: when i try svn with a tool like tortoise it fails because of
> the missing home-dir - everything works fine when autofs is enabled.
>
> To solve this behavior, i uncommented the part of the check for homedir in
> session.c (the part where the output "Could not chdir home.." is defined)
> but i am not sure if this is a "clean" way..but it works now. Is there a
> "clean" method to fully disable the lookup for an existing home-dir in ssh?
>
> Pete
> _______________________________________________
> openssh-unix-dev mailing list
> openssh-unix-dev [at] mindrot
> https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev

_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev [at] mindrot
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev

scott_n at xypro

Jul 19, 2010, 9:41 AM

Post #3 of 5 (402 views)
Permalink

RE: Disabling lookup for /homedir [In reply to]

Quoth Peter Ivanov:
> I want to disable the lookup for a home-dir because i don't need it
for
> svn.
>
Where, exactly, do you expect to find authorized_keys then?

_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev [at] mindrot
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev

Jefferson.Ogata at noaa

Jul 19, 2010, 10:47 AM

Post #4 of 5 (400 views)
Permalink

Re: Disabling lookup for /homedir [In reply to]

On 2010-07-19 16:41, Scott Neugroschl wrote:
> Quoth Peter Ivanov:
>> I want to disable the lookup for a home-dir because i don't need it
> for
>> svn.
>>
> Where, exactly, do you expect to find authorized_keys then?

Wherever AuthorizedKeysFile points to, I suspect. Note that OP wrote, "I
have a centralized authorized_keys for pub-key authentication."

--
Jefferson Ogata <Jefferson.Ogata [at] noaa>
NOAA Computer Incident Response Team (N-CIRT) <ncirt [at] noaa>
"Never try to retrieve anything from a bear."--National Park Service
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev [at] mindrot
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev

scott_n at xypro

Jul 19, 2010, 1:52 PM

Post #5 of 5 (401 views)
Permalink

RE: Disabling lookup for /homedir [In reply to]

Quoth Jefferson Ogata:
> On 2010-07-19 16:41, Scott Neugroschl wrote:
> > Quoth Peter Ivanov:
> >> I want to disable the lookup for a home-dir because i don't need it
> > for
> >> svn.
> >>
> > Where, exactly, do you expect to find authorized_keys then?
>
> Wherever AuthorizedKeysFile points to, I suspect. Note that OP wrote,
> "I
> have a centralized authorized_keys for pub-key authentication."
>

Ah. I missed that. Thanks.

_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev [at] mindrot
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads