Homefolder permissions bug ISPConfig

ISPConfig Logo

Today I ran into a still open bug of ISPConfig (ISPConfig 3.1.3 under Debian Jessie).

The problem occurred, when I tried to clone a BitBucket repository with a non root SSH-user in his own website root (where permission rights generally should be no problem).
Hence I wanted to use key-based authentication for BitBucket, I generated a new key with ssh-keygen. Here I struggled the first time, because the key-gen command wanted to create the key in the Base Dir folder of the user and hadn’t the right permissions:

I could work around this by adding the correct path to the users Home Dir:

Afterwards I copied the public key to BitBucket. But when I tried to clone the repository, I still got an error:

With the help of google I found this still open bug report for ISPConfig.

What brought me the solution was:

  1. Add an entry to ~/.ssh/config ( $> nano ~/.ssh/config )
    But that didn’t solve the problem at all. Additionally I had to …
  2. Symlink the ssh folder in the Base Dir of the site to the ssh folder in the Home Dir of the user with the help of a root account:
    All these commands where executed from within /var/www/clients/client2/web8 which ist the Base Dir of the website.

That finally solved my problem and I was able to clone my repo.

Disadvantage of ISPConfig hack

The disadvantage of that workaround is, that  only the respective ssh user is able to use this .ssh folder. So other users created via ISPConfig won’t be able to connect to other services via SSH. I hope there will be a better solution very soon! fingerscrossed

 

Leave a Reply

Your email address will not be published. Required fields are marked *