Locking Down SFTP

Linux and Unix-Like Red Hat
1

Hi List,

I'm sure this has been done before and there must be several ways to skin the cat on this topic. What I am trying to achieve is set up user accounts for use with SFTP based on the standard OpenSSH protocol. And I want to be able to lock them down so that they cannot browse outside of their own home directories and can only write to their home directories but cannot read from them.

Using CentOS 6.

What is the best solution? I'd be interested in hearing any solutions.

thanks,

2

This writeup might be of interest to you: HOWTO: chroot SFTP

Personally I use vsftpd in this sort of a situation. It can easily be configured to do what you want to do.

1 Like
3

Or if you're using OpenSSH 4.8 or higher, there is an out-of-the-box "chroot" option you can configure in sshd_config file; much easier than creating a chroot by hand.