Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Configuring Fedora Core 4 and Webhost anager for SFTP

Posted on 2006-05-03
6
Medium Priority
?
385 Views
Last Modified: 2008-01-09
Here's my situation.

I am running Fedora Core 4 with Webhost Manager and cPanel to manage my sites.  I am able to SFTP and SSH into the sites, but SFTP allows me to change directory up to /and then down into /bin, /usr, and other system directories.  I would like to be able to SFTP/SSH into the server and the individual sites, but I would like to restrict access to the /home/username directory for each account.  Ideally, the only user that would be allowed SFTP would be me on my own user account.  Is there a way to accomplish this using ProFTPd and the Fedora/Webhost Manager setup?

Also, I would like to restrict shell access to most accounts.  Currently, if I use jailshell, the users can log in and get up to / and then into the system directories, although they are prevented from acessing the files.  If I use noshell, this also disables ftp.

Ideally, a normal user would have regular ftp access, no sftp or shell (SSH), and my user would have SFTP and SSH.  Any way to do this?

Thanks.
0
Comment
Question by:alanpollenz
  • 2
  • 2
4 Comments
 
LVL 15

Expert Comment

by:m1tk4
ID: 16602412
On most WHM/cPanel setups I've seen SFTP is handled by sshd, not ProFTPd. There is a way to do what you want, it's not that straightforward though:

http://olivier.sessink.nl/jailkit/howtos_sftp_scp_only.html
0
 

Author Comment

by:alanpollenz
ID: 16613854
Actually, that explains how to set up an SFTP/SSH only account in a jail environment.  What I want to do is disable SFTP/SSH for most users.
0
 
LVL 15

Accepted Solution

by:
m1tk4 earned 1000 total points
ID: 16613902
Set their default shell to /sbin/nologin by editing /etc/passwd. Sorry, I don't know how to do this through WHM.
0
 

Author Comment

by:alanpollenz
ID: 16626499
Thanks.  That did the trick.

Alan
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

​Being a Managed Services Provider (MSP) has presented you  with challenges in the past— and by meeting those challenges you’ve reaped the rewards of success.  In 2014, challenges and rewards remain; but as the Internet and business environment evol…
Fine Tune your automatic Updates for Ubuntu / Debian
Are you ready to place your question in front of subject-matter experts for more timely responses? With the release of Priority Question, Premium Members, Team Accounts and Qualified Experts can now identify the emergent level of their issue, signal…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses
Course of the Month20 days, 17 hours left to enroll

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question