A question can only have one accepted answer. Are you sure you want to replace the current answer with this one?
You previously marked this answer as accepted. Are you sure you want to unaccept it?
Scalable compute services.
Simple object storage.
Tools & Integrations
Automate your infrastructure.
Connect, share and learn
DevOps and development guides
Questions & Answers
Development and systems Q&A
by Hazel Virdó
I want to restrict my new created user. Only the /home/user section can be accessed. How can I do that?
I found the answer. For those seeking the same;
Create a new group
sudo addgroup exchangefiles
Create the chroot directory
sudo mkdir /var/www/GroupFolder/
sudo chmod g+rx /var/www/GroupFolder/
Create the group-writable directory
sudo mkdir -p /var/www/GroupFolder/files/
sudo chmod g+rwx /var/www/GroupFolder/files/
Give them both to the new group
sudo chgrp -R exchangefiles /var/www/GroupFolder/
after that i went to /etc/ssh/sshd_config and i added in the end of the file
Match Group exchangefiles
# Force the connection to use SFTP and chroot to the required directory.
# Disable tunneling, authentication agent, TCP and X11 forwarding.
Now I'm going to add new user with obama name to my group
sudo adduser --ingroup exchangefiles obama
now every thing is completly finish we need one commend to restart the ssh again
sudo service ssh restart
notice: the user now can't do any thing out file directory I mean all his file must be in file Folder
Add comments here to get more clarity or context around a question. To answer a question, use the “Answer” field below.
Use permission 700 and make sure the folder owner is correct.
This is not the answer to the problem. example user will only be able to read the /home/example folder. Must not access the /