How can I allow a user sudo/root on SFTP?

server permissions ssh sftp
6,148

You don't - such a mechanism for elevated privilege browsing as a non-root user doesn't exist in SFTP.

You would have to enable the root account and give whomever needs the elevated access direct access to that account instead, which for obvious security reasons (risk of bruteforcing the root account and risking someone gaining power over your system, for starters) is dangerous.

Share:
6,148

Related videos on Youtube

Brisk Node
Author by

Brisk Node

Updated on September 18, 2022

Comments

  • Brisk Node
    Brisk Node over 1 year

    I've got a Hetzner Dedicated Root server, and would like to either allow the root user to access SFTP - Which doesn't work at the moment, I get this error: 

    Status:    Connecting to <IP>...
Response:    fzSftp started, protocol_version=8
Command:    open "root@<IP>" 22
Command:    Pass: **
Error:    Authentication failed.
Error:    Critical error: Could not connect to server

    Or, I'd like a new secondary user with all permissions. At the moment I have a second user, but it cannot access/read/write all directories (/etc/nginx/sites-available specifically).

    I used OVH before Hetzner and they had pre-configured root SFTP access. However, Hetzner's servers don't have this setup and I've been struggling.

    So, to summarise: I'd like to use SFTP as a root/sudo user with unrestricted access to all files.

  • Brisk Node
    Brisk Node over 5 years
    OVH allowed full unrestricted SFTP over the root login.
  • Thomas Ward
    Thomas Ward over 5 years
    @BriskNode but that's OVH being stupid with their VPSes; default permissions and such, and you're using the root account directly. (They actually intend for you to use that only temporarily and then harden up the system). Just because OVH allows something doesn't mean it's not dangerous or a good security practice.
  • Brisk Node
    Brisk Node over 5 years
    Thanks for telling me about this. I had a dedicated server on OVH with this but switched to Hetzner for more RAM for my budget. Is there a way to give another SFTP only user access to all files?
  • Thomas Ward
    Thomas Ward over 5 years
    @BriskNode ACLs, but you should never give a non-root account total system access like that.
  • Brisk Node
    Brisk Node over 5 years
    I'll probably remove access when I've done setting it up

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How to create a SFTP (SSH) User with extremely limited permissions
Permission denied for *.pem file
SSH: Permission denied, please try again. While tryng to connect to remote 12.04 server
Open ssh error: packet_write_wait: Connection to x.x.x.x port 22: Broken pipe
Enable SSH Root Login with Password in Ubuntu Server 16.04
How do I copy files with SCP to /var/www?
Hide/Don't list non-readable folders
How to associate a keyfile with a site in FileZilla
ssh localhost: Permission denied (publickey) Ubuntu on WSL2
SSH Permission denied (using right password)