How to set up a chroot for ssh/scp on a Debian box

This page is based on the work of Wolfgang Fuschlberger -> http://www.fuschlberger.net/programs/ssh-scp-chroot-jail/ (thx!)

I've made some fixes to Wolfgang Fuschlberger's script. Wolfgang already applied my bugfixes so I'll just collect the error messages for google. HTH

(Possible) Bugs:

error: PRNG is not seeded
solution: mknod /dev/urandom c  1 9
error: ssh_askpass: exec(/usr/bin/ssh-askpass): No such file or directory
       Host key verification failed.
solution: mknod /dev/tty c 5 0
error: pssh from chroot-environment to other hosts does not work.
solution: chmod 666 /home/jail/dev/tty

Hints:

If you notice problems with a special program just copy 'strace' into the chroot-environment and run 'strace -f $PROGRAM_WITH_PROBLEMS'. Also take a look at chrootssh.sf.net.

TODO:

Latest change: Mon Oct 18 13:21:19 CEST 2004