Re: locking an SFTP user into only one directory.

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
M\Amit Nepal at <-
MMBen Trussell at ->
Attachments:
Message as email
+ (text/plain)
+ (text/html)
+ (text/plain)
Delete this message
Reply to this message
Author: keith smith
Date:  
To: amit@amitnepal.com, Main PLUG discussion list
Subject: Re: locking an SFTP user into only one directory.
Thank you so much!!



 
------------------------
Keith Smith
On Wednesday, April 30, 2014 4:20 PM, Amit Nepal <> wrote:

A while back, I had done this to restrict to a particular directory , but it may not be ideal for you as you already have some parent directories, but you can give a try :

http://www.amitnepal.com/chrooting-users-with-sftp/ 

Or ,  you may be able to mount that directory somewhere else and
      give access like this :
http://www.amitnepal.com/ftp-access-to-files-outside-base-directory/


Just look at this part :

mkdir /home/username/extraaccess
mount --bind /folder/to/grant/access/ /home/username/extraaccess
Thanks

Amit K Nepal
Chief Information Officer
(RHCE, CCENT, C|EH, C|HFI, GIAC ISO 27000 Specialist)
omNovia Technologies Inc.
On 4/30/2014 3:54 PM, keith smith wrote:


>
>Hi I'm using CentOS 6.5 and we use the users home dir + "public_html" as the docroot for our websites like this:
>
>
>/home/user_name/public_html
>
>
>We are using SSH for SFTP.  Each host has only one SFTP user.
>
>
>What I need to do is add a directory, lets call it uploads like this: 
>
>
>
>/home/user_name/public_html/uploads
>
>
>
>Any content in uploads must be accessible to Apache so it can be displayed.
>
>
>And I would like to add a user that can only access
>/home/user_name/public_html/uploads and would be able to add/edit/remove any files in just the uploads directory.
>
>
>I thought of a link, however that did not work.  I created a user uploads which created a home dir /home/uploads and I tried to link that to /home/user_name/public_html/ which created
>/home/user_name/public_html/uploads .  This did not work.
>
>
>I hope this makes sense. 
>
>
>
>Any suggestions?
>
>
>
>Thanks in advance!!

>
>Keith
>
>
>
>
>
>
>---------------------------------------------------
PLUG-discuss mailing list - To subscribe, unsubscribe, or to change your mail settings: http://lists.phxlinux.org/mailman/listinfo/plug-discuss


---------------------------------------------------
PLUG-discuss mailing list -
To subscribe, unsubscribe, or to change your mail settings:
http://lists.phxlinux.org/mailman/listinfo/plug-discuss---------------------------------------------------
PLUG-discuss mailing list -
To subscribe, unsubscribe, or to change your mail settings:
http://lists.phxlinux.org/mailman/listinfo/plug-discuss
This message was posted to the following mailing lists:
Plug Discuss
Mailing List Info | Nearby Messages		<-Re: locking an SFTP user into only one directory.Donation/Recycling + Small Request->
Some Mailing List Archive administrated by UnconfiguredLurker (version 2.3)