Re: locking an SFTP user into only one directory.

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
M\keith smith at <-
MMkeith smith at ->
Attachments:
Message as email
+ (text/plain)
+ (text/html)
+ (text/plain)
Delete this message
Reply to this message
Author: Amit Nepal
Date:  
To: plug-discuss
Subject: Re: locking an SFTP user into only one directory.
A while back, I had done this to restrict to a particular directory ,
but it may not be ideal for you as you already have some parent
directories, but you can give a try :

http://www.amitnepal.com/chrooting-users-with-sftp/

Or , you may be able to mount that directory somewhere else and give
access like this :
http://www.amitnepal.com/ftp-access-to-files-outside-base-directory/

Just look at this part :

|mkdir /home/username/extraaccess|

|mount --bind /folder/to/grant/access/ /home/username/extraaccess|


Thanks
*Amit K Nepal
Chief Information Officer
(RHCE, CCENT, C|EH, C|HFI, GIAC ISO 27000 Specialist)
omNovia Technologies Inc. *
On 4/30/2014 3:54 PM, keith smith wrote:
>
> Hi I'm using CentOS 6.5 and we use the users home dir + "public_html"
> as the docroot for our websites like this:
>
> /home/user_name/public_html
>
> We are using SSH for SFTP. Each host has only one SFTP user.
>
> What I need to do is add a directory, lets call it uploads like this:
>
> /home/user_name/public_html/uploads
>
> Any content in uploads must be accessible to Apache so it can be
> displayed.
>
> And I would like to add a user that can only access
> /home/user_name/public_html/uploads and would be able to
> add/edit/remove any files in just the uploads directory.
>
> I thought of a link, however that did not work. I created a user
> uploads which created a home dir /home/uploads and I tried to link
> that to /home/user_name/public_html/ which created
> /home/user_name/public_html/uploads . This did not work.
>
> I hope this makes sense.
>
> Any suggestions?
>
> Thanks in advance!!
>
> Keith
>
>
>
>
> ---------------------------------------------------
> PLUG-discuss mailing list -
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.phxlinux.org/mailman/listinfo/plug-discuss

---------------------------------------------------
PLUG-discuss mailing list -
To subscribe, unsubscribe, or to change your mail settings:
http://lists.phxlinux.org/mailman/listinfo/plug-discuss
This message was posted to the following mailing lists:
Plug Discuss
Mailing List Info | Nearby Messages		<-Re: Why is Firefox so slow (and degrades over time)?Re: locking an SFTP user into only one directory.->
Some Mailing List Archive administrated by UnconfiguredLurker (version 2.3)