Re: Best SFTP (w/chroot): vsftpd vs mysecureshell vs other ??

To: debian-user@lists.debian.org
Subject: Re: Best SFTP (w/chroot): vsftpd vs mysecureshell vs other ??
From: Chris Davies <chris@roaima.co.uk>
Date: Sat, 04 Jan 2014 14:12:40 +0000
Message-id: <[🔎] ofhlpaxr2f.ln2@news.roaima.co.uk>
References: <[🔎] CAGk-VN_j4fKCgX2Kf1AxLrrJZu_5v3C3BjSom00tdryL+CPgnA@mail.gmail.com>

Bob Goldberg <bobg.hahc@gmail.com> wrote:
> trying to determine best solution for an SFTP server.

>   vsftpd appears to be my current best choice

vsftpd is "Very Secure FTP Daemon". It does FTP well (cleartext passwords
notwithstanding). It doesn't do SFTP (file transfer over ssh).


> users must be chroot'ed to /home/chroot/home/<username>.
>   users belong to the chroot group.
>   their home dir down, need all be group owned by chmgr.
>   home dir down; should all be chmod 770(dir)/660(files). so <user> and
> managers (chmgr group) all have rw access to files, and rwx /dirs; with
> other having no rights at all.

> managers ideally chroot'ed to /home/chroot/home.
>   they can access all <username> folders, and transfer files in/out of
> each.
>   they belong to the chmgr group.

Sounds exactly like a job for the Match directive within a standard
sshd_config (openssh-server).

Chris

Reply to:

Follow-Ups:
- Re: Best SFTP (w/chroot): vsftpd vs mysecureshell vs other ??
  - From: emmanuel segura <emi2fast@gmail.com>

References:
- Best SFTP (w/chroot): vsftpd vs mysecureshell vs other ??
  - From: Bob Goldberg <bobg.hahc@gmail.com>

Prev by Date: Re: slow internet
Next by Date: Re: Best SFTP (w/chroot): vsftpd vs mysecureshell vs other ??
Previous by thread: Re: Best SFTP (w/chroot): vsftpd vs mysecureshell vs other ??
Next by thread: Re: Best SFTP (w/chroot): vsftpd vs mysecureshell vs other ??
Index(es):
- Date
- Thread