<div>
<div class="content wysiwyg-content">
The following is at the end of my &quot;/etc/ssh/sshd_config&quot;...<br />

<pre><code id="code-10-28539292-1">Subsystem sftp internal-sftp

Match Group sftponly
    ChrootDirectory %h
    ForceCommand internal-sftp
    AllowTcpForwarding no</code></pre>
I have a group called sftponly with gid 562.<br />
I've added userabc to this group and the following is his entry in /etc/passwd...<br />
userabc:x:527:562:User description goes here:/home/userabc:/bin/fa<wbr />lse<br />
I've restarted sshd.<br />
&quot;/home&quot; and &quot;/home/userabc&quot; is owned by root:root and permissions for both folder is 755/<br />
Below is the output when I try to SFTP in to the server using userabc...<br />

<pre><code id="code-10-28539292-2">Status:	Connecting to xxx.xxx.xxx.xxx...
Response:	fzSftp started
Command:	open &quot;userabc@xxx.xxx.xxx.xxx&quot; 22
Command:	Pass: ********
Status:	Connected to xxx.xxx.xxx.xxx
Status:	Retrieving directory listing...
Command:	pwd
Response:	Current directory is: &quot;/&quot;
Command:	ls
Status:	Listing directory /
Error:	Unable to open .: permission denied</code></pre>
May I know, what am I missing here? Thanks!
</div>
</div>


The following is at the end of my "/etc/ssh/sshd_config"...
(CODE)
I have a group called sftponly with gid 562.
I've added userabc to this group and the following is his entry in /etc/passwd...
userabc:x:527:562:User description goes here:/home/userabc:/bin/false
I've restarted sshd.
"/home" and "/home/userabc" is owned by root:root and permissions for both folder is 755/
Below is the output when I try to SFTP in to the server using userabc...
(CODE)
May I know, what am I missing here? Thanks!

How to restrict a Linux user to his home directory only when he SFTP in?

Linux is a UNIX-like open source operating system with hundreds of distinct distributions, including: Fedora, openSUSE, Ubuntu, Debian, Slackware, Gentoo, CentOS, and Arch Linux. Linux is generally associated with web and database servers, but has become popular in many niche industries and applications.

Linux

The variety of Linux distributions creates myriad issues relating to configuration and operations when computers are networked, not the least of which is the use of various network management applications, some of which are included with specific distributions, while others are standalone applications.

Linux Networking

The Linux operating system, in all its flavors, has its own share of security flaws that allow intrusions, but there are various mechanisms by which these flaws can be removed, generally divided into two parts: authentication and access control. Authentication is responsible for ensuring that a user requesting access to the system is really the user with the account, while access control is responsible for controlling which resources each account has access to and what kind of access is permitted.