Solved

unable to configure a user to access ubuntu server via sftp to access the /var/www folder

Posted on 2014-03-10
5
405 Views
Last Modified: 2014-03-12
Hi,

I trying to configure a user account to access the server using their existing sftp account  but I am not able to find their profile.  since its not a system account it does not show up in /etc/passwd.  so I created a new system account that allows me to access the server but when I got to the /var/www the folder says empty even though their are files in the folder  It seems I am receiving permission denied message.


My goal is to allow the user to have access to the folder and its sub directories.  the permissions of the folder are:

drwx--x---  Web   Testers  Folder name


I appreciate any suggestions.
0
Comment
Question by:cesemj
  • 2
  • 2
5 Comments
 

Author Comment

by:cesemj
ID: 39919103
I noticed that the directory is a symlink
so when I tried to create a new directory it kicked me out
0
 
LVL 62

Expert Comment

by:gheist
ID: 39919238
I assume web server is not expected to change it's content, so it can happily suffice with g=wr...
0
 
LVL 13

Assisted Solution

by:Daniel Helgenberger
Daniel Helgenberger earned 250 total points
ID: 39922966
Hello cesemj,

if gheist comment did not solve the problem, please keep these general things in mind in conjunction with FTP:
- SFTP is via SSH and has not much to do with FTP - so the same things apply as with ssh access. Users would create files which belong to the creating user/group and need in turn a system account. Also, it does not support chroot's.
- FTP (and FTP/s) does run as a system user. As such you can have it run as a member of the 'web' or apache group, whatever your httpd is running on. Also, you can define a chroot.

The later enables you to have ftp users authorized by any backend easily without pam (commonly sql or ldap) while the permissions would stay correct (your httpd could possibly run in access errors).

Bottom line: if you plan on many users to upload in /var/www, consider using FTPS rather then SFTP.
0
 
LVL 62

Accepted Solution

by:
gheist earned 250 total points
ID: 39923513
SFTP supports chroots via internal-sftp (if you googel you see how it differs from default sftp-server)
0
 

Author Closing Comment

by:cesemj
ID: 39925260
Thank you all for sharing your expertise!!
0

Featured Post

Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

rdate is a Linux command and the network time protocol for immediate date and time setup from another machine. The clocks are synchronized by entering rdate with the -s switch (command without switch just checks the time but does not set anything). …
It’s 2016. Password authentication should be dead — or at least close to dying. But, unfortunately, it has not traversed Quagga stage yet. Using password authentication is like laundering hotel guest linens with a washboard — it’s Passé.
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

685 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question