rsk wrote:
...chrooting in SSH, but forgot to enable internal-sftp...
as per
the tutorial, i've added:
Code:
Subsystem sftp internal-sftp
...
Match group filetransfer
ChrootDirectory %h
X11Forwarding no
AllowTcpForwarding no
ForceCommand internal-sftp
to
sshd_config. i presume that takes care of the enabling internal-sftp bit?
rsk wrote:
...the user's shell dies (or more precisely, can't start in first place) because there's no libraries nor device files inside the chroot?
ah! - now that sounds a distinct possibility. the tutorial
chowns root:root the user's home directory, so they cannae create new files there and then sets them up a subdirectory within that home directory, to which they do have full access. i just used
usermod -d to change my user's home directory to
/var/www/theirdomain.com so, of course there is nothing in there, apart from their website files.
looks like i'll need to go back and do it the tutorial way but put a symbolic link inside their home directory, to their website directory. that should work [he said hopefully!]
_________________
**************************
Mental Diarrhoea**************************