SFTP journey

 To set up an SFTP server for your existing user karl, allowing uploads to /var/www and its subdirectories while still providing SSH access without restricting him to SFTP only, follow these steps:

Prerequisites

  • Ensure you have root or sudo access to the server.
  • OpenSSH server should be installed.

Steps

  1. Open SSH Configuration File:

    sudo nano /etc/ssh/sshd_config

  2. Add/Modify SFTP Configuration: Find the section related to Subsystem sftp. If it exists, it may look like this:

    Subsystem sftp /usr/lib/openssh/sftp-server

    If it doesn't exist, you can add it. After that, add a new section for the karl user. Place this below the Subsystem sftp line:

    Match User karl
        ChrootDirectory /var/www
    ForceCommand internal-sftp
    AllowTcpForwarding no
    X11Forwarding no

  3. Set Permissions: The ChrootDirectory must be owned by root and not writable by anyone else. Adjust permissions as follows:

    sudo chown root:root /var/www
    sudo chmod 755 /var/www

    For any subdirectories where karl should upload files, you can set ownership to karl:

    sudo mkdir /var/www/uploads
    sudo chown karl:karl /var/www/uploads

  4. Restart SSH Service: After making changes, restart the SSH service to apply the configuration:

    sudo systemctl restart sshd

  5. Testing:

    • Log in as karl using SFTP:
      sftp karl@caputxeta
    • Try uploading a file to the uploads directory:
      put local_file.txt uploads/
    • Ensure you can still log in via SSH:
      ssh karl@caputxeta

Note

  • The ChrootDirectory should be a directory that karl has permissions to write to. If karl needs to upload files to multiple directories under /var/www, you might need to repeat the ownership and permissions steps for each directory where uploads are needed.
  • If you have any existing files in /var/www that need to be accessible to karl, you may want to adjust their permissions accordingly.

Troubleshooting

  • If you encounter issues with SFTP access, check the SSH logs for error messages:
    sudo tail -f /var/log/auth.log
  • Ensure that there are no syntax errors in the SSH configuration by running:
    sudo sshd -t

This setup allows karl to use SFTP for file uploads while still having SSH access to the server for other tasks.

Comments

Post a Comment

Popular posts from this blog

git journey

28JAN2025 Moving local folders was a breeze!  Close VS code.  Move the folder.  Reopen. Done. git remote -v To check remote folder is correct git remote set-url origin <new-repository-URL> ..if not 23OCT2024 Make sure your .gitignore and .gitattributes files are in place. In VS you can press: CTRL + ' Or in Ubuntu go to the root of the solution in terminal git init git add . git commit -m "Initial commit" Then Create a Repository on GitHub : Go to GitHub and log in. Click on the New button to create a new repository. Name the repository, set it to public or private, and create it. Add the Remote Repository : Copy the repository URL from GitHub and use it to add a remote in your local Git. git remote add origin https://github.com/your-username/your-repository.git Push Your Code : Push your local repository to GitHub. git push -u origin master  (check if master or main) git branch   listed the branch, funnily enough Then later after some code-peddling git...
Read more

Django Journey

Image
15APR2025 python manage.py runserver 0.0.0.0:80 for LAN access python manage.py flush   to restart DB from scratch. pip -V    will confirm if you in the venv 02APR2025 Probably better to use . foldername, while ensuring ,gitignore has this. python -m venv .v env .venv \Scripts\activate pip install django 22FEB2025 python -m venv env env \Scripts\activate pip install django deactivate env \Scripts\activate 13FEB2025 python manage.py makemigrations and then python manage.py migrate python manage.py createsuperuser    python manage.py changepassword < user_name > 06FEB2025 Use the setup instructions for creating a github project in website first, then clone it locally. Now you have  C:\Source\github\bendecko\projectname\ Navigate to that folder and run  django-admin startproject longtermreviews .      (note .) This creates the standard structure: Where my_site is projectname (master) and blog,reviews,user,login etc is modu...
Read more

github start project

See below for new machine user settings... Follow these instructions: Ensure the Repository is already created in the github website.  (Add .gitignore for project-type, and MD file) Then: 1. Clone the Repository Open VS Code . Open the Command Palette ( Ctrl + Shift + P or Cmd + Shift + P on Mac). Type "Git: Clone" and select it. Paste the URL: https: //github.com/bendecko/projectname.git Choose a folder where you want to store the project.  IT WILL create the projectname folder Wait for the repository to be cloned, then click Open when prompted. 2. Open the Project Manually (If Needed) If VS Code doesn't prompt you to open the folder: Click File > Open Folder (or Ctrl + K, Ctrl + O ). Navigate to the cloned project directory. Click Open . 3. Install Dependencies (If Required) If it's a Python project, check for requirements.txt or pyproject.toml : pip install -r requirements.txt If it's a Node.js project, check for package.json and run: npm install ...
Read more