hi i want to make user login via ssh will be jailed to his directory..
newbie here, i find alot of tutorial about jail ssh, but all the result give me back the sftp result.
i hv did alot of configuration and makes me more confuse

user from group sftponly will not be able to access to server via ssh/sftp.
Error: Software caused connection abort.
i have added/delete AllowGroups,
swap # between internal-sftp || /usr/lib/openssh/sftp-server
all still have the same error

or i have manually added
i can login ch5 via ssh, but not jailed
if i add user ch5 into group sftponly
it will have the same error as above
anyone pls help, or if i hv gone wrong too deep, just give me an exmaple of this .thanks


oh i have also use makejail.sh http://www.fuschlberger.net/programs...p-chroot-jail/
sh makejail.sh ch6 /bin/bash /export
still cannnot
please help ,ty

Hi,

Please find out if this could be of any help:

hi thanks for your reply. i have found why i was unable to connect using sftp
setenforce 0 will let me sftp to the rhel, with proper jail it in his directory.

but how do i jail ssh?

i want to jail a user from ssh and sftp(done), not root

thanks alot

I suggest you look at the man page for sshd_conf, in particular the ChrootDirectory option. Note that this option should be placed after a "Match" line (so you can selectively choose which users and groups to chroot). For example, I have at the very end of my sshd_config: