SFTP

If the user needs write access to /var/www/sites, then you must jail the user at /var/www which has root:root ownership and permissions of 755.

Step 1: Create the SFTP user · Step 2: Create the SFTP group and add SFTP user · Step 3: Configure SFTP Chroot Jail · Step 4: Assign ownership and ...

Root-owned dir should have 555 permissions and user-dirs should be created by root and owned by specific user. Inside subdirs user can do ...

The permissions 'trick' detailed above, where one sets execute permissions exclusively on the chroot directory, is insecure. This allows a user ...

Specifies the pathname of a directory to chroot(2) to after authentication. At session startup sshd(8) checks that all components of the ...

Create the user chroot environment and configure directory permissions. NOTE: Ensure that this entire path is owned by root and only writable by root. If ...

It makes it impossible for a user to have write permissions to the folders, if it is only writable to the user root and set to ben non-writable for groups due ...

The user should now be able to create files/subdirectories inside this directory. See File permissions and attributes for more information.

The simplest way to do this, is to create a chrooted jail environment for SFTP access. This method is same for all Unix/Linux operating systems.

First, set the ownership and permissions on the chroot directory. chown root:named $ROOTDIR chmod u=rwx,g=rx,o= $ROOTDIR. Change everything to be owned by root.