Lshell not work with CageFS

ghantoos / lshell

lshell is a shell coded in Python, that lets you restrict a user's environment to limited sets of commands, choose to enable/disable any command over SSH (e.g. SCP, SFTP, rsync, etc.), log user's commands, implement timing restriction, and more.

GNU General Public License v3.0

435 stars 112 forks source link

Lshell not work with CageFS #150

Open pavelz01 opened 8 years ago

pavelz01 commented 8 years ago

Hello!

Unfortunately, Lshell does not work currently with CageFS. When CageFS enabled lshell authentication not works. In logs I see this records: sshd[520866]: lastlog_openseek: Couldn't stat /var/log/lastlog: No such file or directory

In the CageFS documentation described that /var/log/lastlog not works - http://docs.cloudlinux.com/index.html?cagefs_quirks.html

Can you lshell to prevent using /var/log/lastlog? Enabling Lshell over CageFS can significantly improve the security.

ghantoos commented 8 years ago

Hello

There is an option in the configuration file to change this.

##  configure log file name (default is %u i.e. username.log)
#logfilename     : %y%m%d-%u
#logfilename     : syslog

Have you tried to change this?

pavelz01 commented 8 years ago

Yes, I am try use the log options. They do not solve the problem with CageFS.

ghantoos commented 8 years ago

I unfortunately do not have cagefs to test this. Any chance you could debug more to better understand where this comes from?