sftp user restrictions [RESOLVED]
I have a user set up to sftp into a server. I have set their shell to /bin/false and they cannot ssh into the server.
Once they sftp into the server they can do move around more then I want them to. Is there a way to keep them in the dir. I have the follow config in my sshd_config
Subsystem sftp internal-sftp -l VERBOSE
Match group sftponly
ChrootDirectory /chroot
X11Forwarding no
AllowTcpForwarding no
ForceCommand internal-sftp
Based on a doc on the Redhat site i did the following
mkdir -p /chroot/ftp
mkdir /ftp
mount -o bind /ftp /chroot/ftp
The users home dir is set to /ftp
Last edited by packetsmacker; 08-26-2015 at 04:06 PM.
Reason: so people could see it was resolved
|