• Hi, Pleskians! We are running a UX testing of our upcoming product intended for server management and monitoring.
    We would like to invite you to have a call with us and have some fun checking our prototype. The agenda is pretty simple - we bring new design and some scenarios that you need to walk through and succeed. We will be watching and taking insights for further development of the design.
    If you would like to participate, please use this link to book a meeting. We will sent the link to the clickable prototype at the meeting.
  • (Plesk for Windows):
    MySQL Connector/ODBC 3.51, 5.1, and 5.3 are no longer shipped with Plesk because they have reached end of life. MariaDB Connector/ODBC 64-bit 3.2.4 is now used instead.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.

Question Best way to add sftp user to be jailed within an existing host

P

Paul Larson

Basic Pleskian
Server operating system version
Ubuntu 22.04.4 LTS
Plesk version and microupdate number
Obsidian Version 18.0.62 Update #2, last updated on July 29, 2024 11:19 PM
There are numerous threads that cover this issue, many I've read, but I can't seem to master this workflow.

  • A domain exists, example.com, with user: example
  • A directory exists, /var/www/vhosts/example.com/upload
  • I'd like an sftp user (not ftp) jailed to /var/www/vhosts/example.com/upload
FTP is not an option for the client. FTP or over TLS not an option.

I've solved this in the past, but always felt I'm over-working something. My norm has been:

  • Create completely separate ssh user (as root user, not in Plesk)
  • Create group (usermod command), such as my-group, where 'example' and 'additional_user' are members
  • Set directory ownership of /var/www/vhost/example.com/upload to example:my-group
  • Then, the ssh user additonal_user can navigate to this 'upload' directory and upload files - but they can also navigate the rest of the web property
Paul
 
I can't really think of any another way than what you've described already. Which is not to say there isn't any other way to accomplice, but to me your approche makes sense :)
 
serbanovvostrov2 said:
I'm trying to search a solution for this and found this article: Plesk: Enable SFTP access for additional FTP users. Works but the user is not properly jailed, maybe you can take a look and if you can fix it can let me know as well :)
Click to expand...
Hey,

I'm trying to follow these instructions, but the final section where you edit:

`nano /var/www/vhosts/domain.tld/etc/passwd`

this file doesnt exist (obviously using the correct domain.tld) and if I try and create it, then it says I cannot save the file?

Any ideas?
 
You must log in or register to reply here.

Similar threads

UHF
Resolved SFTP Connection Issue
Replies
2
Views
3K
UHF
UHF
J
Issue Additional FTP accounts fatal error over SFTP: Received unexpected end-of-file from SFTP server
Replies
10
Views
7K
learning_curve
learning_curve
burnley
Forwarded to devs It is possible to create mail box without triggering 'Create Mailname' event handler
Replies
4
Views
15K
Peter Debik
P
S
Question grant ftp user access to all folders
Replies
1
Views
2K
mow
M
jhernanper
Issue Unable to install SuiteCRM: Symfony Runtime Exception. Tried everything - desperate
Replies
1
Views
5K
Maarten
M
Back
Top