Results 1 to 2 of 2

Thread: sFTP setup, what's missing?

Threaded View

  1. #1

    sFTP setup, what's missing?

    I installed a new virtual server, SLES 11.2 64bit to work as a sFTP server for a local community. But I've done something wrong and need help.

    The server system is installed with LVM on both the OS disk and also a second disk where the /sftp is mounted.

    sshd_config is edited with these lines:

    Subsystem sftp internal-sftp

    and on the last rows:

    Match group sftpgroup
    ForceCommand internal-sftp
    ChrootDirectory /home/%u
    AllowTCPForwarding no
    X11Forwarding no


    Reloaded sshd with rcsshd reload.

    Then I created a group called "sftpgroup" and a folder structure for the chrooted sftp service.
    mkdir -p /sftp/chroot
    chmod 750 /sftp/chroot
    chown root:sftpgroup /sftp/chroot


    Created a user restricted to the group sftpgroup but without shell (/bin/false)

    When I try to access the sftpserver with testuser@sftpserver I get:
    "couldn't read packet: connection reset by peer"

    the /var/log/messages on server says:
    "fatal:bad ownership or modes for chroot directory /path"

    What is missing/wrong?
    Last edited by tonybarcelo; 25-Oct-2012 at 00:39.

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •