Visit Our UNIX and Linux User Community


SFTP user access restriction to his home dir


 
Thread Tools Search this Thread
Operating Systems Linux SFTP user access restriction to his home dir
# 1  
Old 05-21-2010
MySQL SFTP user access restriction to his home dir

Hi Friends,
I have installed a FTP Server on my Linux machine (Fedora 11).
I want the ftp users to be restricted to their own home dir using sftp.
But the said condition is met when the user logs in using ftp over port 21 and when the user logs in using sftp i.e. protocol 22, he/she has readable (downloadable) access to the upper dir's as well. In short the user is able to traverse through file system using sftp. I have chrooted the users as well.

Could you please advice me the reason & the possible solution for this.

I am sorry, but let me inform you all that I am very new to Linux & installing FTP for the 1st time, so could you please be more specific about the commands & every steps involved with the appropriate prompts (dir's).

Thanks in advance.
Pashy
# 2  
Old 05-21-2010
Please refer the link for Linux Configure rssh Chroot Jail To Lock Users To Their Home Directories Only
# 3  
Old 05-21-2010
If you have a recent OpenSSH that supports the "match" keyword (should be true for Fedora 11), you can configure sshd like:

Code:
Match Group sftponly
    ChrootDirectory %h
    ForceCommand internal-sftp

This means, that all users in the group "sftponly" are restricted to sftp (they cannot login using ssh) and are chrooted to their home directory.
This User Gave Thanks to hergp For This Post:
# 4  
Old 05-21-2010
I have used this MySecureShell SFTP-Server - Index with SCO Openserver 6.0
It may or may not have advantages over hergp's solution.
# 5  
Old 05-26-2010
Thank you..!
I had already stop the firewall & I am unable to inerpret anything from the log file.
After making few changes I am able to login to the ftp server from the command prompt of the server itself.
Code:
ftp localhost

output:
Code:
Trying ::1....
ftp: connect to address ::1connection refused 
Trying 127.0.0.1...
Connected to localhost (127.0.0.1).
220 (vsFTPD 2.1.2)
Name (localhost:vertex):

I am still not able to login to the server via Winscp or Fillezilla..

Please help..!Smilie
Image Image Image Image

Last edited by Scott; 05-26-2010 at 03:45 AM.. Reason: Please use code tags

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Switching from root to normal user takes me to user's home dir

Whenever i switch from root to another user, by doing su - user, it takes me to home directory of user. This is very annoying as i want to be in same dir to run different commands as root sometimes and sometimes as normal user. How to fix this? (1 Reply)
Discussion started by: syncmaster
1 Replies

2. HP-UX

[Solved] Unable to change/create home dir for particular user

Hi all I wanted to change the home dir for a user, but when using smh : SMH->Accounts for Users and Groups->Local Users->Modify User ---------------------------------------------------------------------------------------------------------------------------------------------- * Required... (8 Replies)
Discussion started by: fretagi
8 Replies

3. Solaris

remove a user without removing its home dir

HI all, I have wrongly given a wrong home directory to a user. This dir is very critical for my production environment(Can;t afford to lose it for a single minute) Now i want to delete that user, Whenever i try to delete user it tries to delete its home dir. Commnd i use: userdel ... (9 Replies)
Discussion started by: varunksharma87
9 Replies

4. Solaris

how to change /export/home/user dir to /home /user in solaris

Hi all i am using solaris 10, i am creating user with useradd -d/home/user -m -s /bin/sh user user is created with in the following path /export/home/user (auto mount) i need the user to be created like this (/home as default home directory ) useradd -d /home/user -m -s /bin/sh... (2 Replies)
Discussion started by: kalyankalyan
2 Replies

5. AIX

Not able to mount user home dir from with automount

Hello there Have anyone configured an AIX 5L machine as NIS client? with homedirectories automounted form an NFS share? The NIS server is running Solaris. I am able to configure the AIX machine as client and user is able to login but I have configured the client to use the automountd... (0 Replies)
Discussion started by: balaji_prk
0 Replies

6. UNIX for Dummies Questions & Answers

unable to set user home dir

I created a new user and changed their home directory to /export/home/mydir/ I verified in the passwd file that the home directory is set to the above and that owner of that directory is the new user and yet when I log in as that user I get the following message: No directory! Logging in with... (14 Replies)
Discussion started by: some_one
14 Replies

7. UNIX for Dummies Questions & Answers

Restrict user access to their home dir

Hi! i'm using FreeBSD 6.2 and hosting my pc to frens in particular of sensitive information being saved to the PC, i would like to know is it possible for me to restrict user access to their /home dir. only? and also, i wanted to restrict them listing files under /etc thanks all! (10 Replies)
Discussion started by: rdns
10 Replies

8. Solaris

need to restrict user to his home dir

Hello, i need to create a user who's access is restricted only to his home directory and below, i restricted his pty access by adding 'no-pty' to the options of the ssh key in authorized_keys file. However, sftp access still allows this user access to all my file system thanks (5 Replies)
Discussion started by: lidram
5 Replies

9. UNIX for Dummies Questions & Answers

listing home dir of anothe user

Hi I am trying to display the home directory of another user. I dont have the permissions to change into their directory and wonder is it possible to display their directory eg I cant change directory to john but I am trying to display something like /home/John. If anyone can help I would... (3 Replies)
Discussion started by: mmg2711
3 Replies

10. UNIX for Dummies Questions & Answers

Modify user home dir

I created a new user and assigned a certain home dir to tis user. I've noticed that this home dir (/export/home/test) is already assigned to other users. I really want to create a dedicated home dir for the new user. Can anyone tell me how I can modify this user with a new homedir? Thx for... (4 Replies)
Discussion started by: kris_devis
4 Replies

Featured Tech Videos