Limit every user to his own home folder only

file-permissions linux ssh
8,871

Follow this guide to configure your SSH server to chroot your users.

Essentially, use the ChrootDirectory and ForceCommand rules for sshd_config to limit certain users or groups (Match Group or Match User) to SFTP and a specific directory.

This requires use of the rule Subsystem sftp internal-sftp as well, unless the ChrootDirectory contains all files for a real chroot environment (like a /dev directory with some basic devices)

A different possibility would be to disable shell login. SCP and SFTP might still work for them.

Share:
8,871

Related videos on Youtube

user83493
Author by

user83493

Updated on September 18, 2022

Comments

  • user83493
    user83493 over 1 year

    i have a linux server which users connect to with SSH. my users only upload and download content from their /home folder.

    Basicly, I want them to be limited to see and use only their home folder.

    I read that it might not be a good idea to do so, since they nead read premissions to run programs and scripts, but again: they are only downloading\uploading content to their home dir.

    How can I do it?

  • slhck
    slhck almost 11 years
    Welcome to Super User! Whilst this may theoretically answer the question, it would be preferable to include the essential parts of the answer here, and provide the link for reference.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Setting default group permissions via SFTP
Why does my remote process still run after killing an ssh session?
Samba file sharing on Ubuntu doesn't mask or force permissions for new files
mysqldump with ssh connection in shell script
Can't kill PHP script
Neither libtoolize nor glibtoolize could be found
SSH remote server - display only "echo" on output in terminal
Using WinSCP to grab a file through a tunnel
How to handle special characters in a wget download link?
how to keep an ssh connection from closing?