First time posting, And Relative newbie - We are trying to put together a (what I was hoping to be) simple SFTP server with a top level user and sub 'user root' users (see image)

Image of what we are trying to achieve

(cant post image due to being new, but basically describes a TOP LEVEL user, with USER 1, 2 3 etc.. account with thier own locked down home/roots)

We would love to have some kind of Web Gui to manage but not essential - attempting to build in any recommended linux distro.

We have had this working but the permissions side of things were being inconsistent at best.

Any Help - or directions on where to post appreciated.

Thanks Adrian

Welcome.

Adding a GUI would only complicate things and just represent the text file anyway.

How many users are you thinking about adding?

What it sounds like you are aiming for is a set of SFTP-only accounts locked into a chroot. The chroot target must be root-owned and writable only by root. There are two ways to do that. One is to nest an extra directory within the users' chroots:

Then the matching stanza in sshd_config could be something like this:

The %u substitutes the account's username in the path. See "man sshd_config" for the details.

Hi Turbo,

Thanks for the reply, initially there would be approx 20-25 individual users with thier own 'home/root' directory.

Ill give that a go today - sounds so simple when someone puts it down on paper like that.

Kind Regards

It's pretty easy, once you see how it fits together.

Note that I just tweaked the ChrooDirectory in the example to match the example better.