Timeline for sFTP admin permission denied when placing files into user directory
Current License: CC BY-SA 4.0
19 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Dec 20, 2023 at 15:41 | vote | accept | Vince D | ||
| Dec 20, 2023 at 0:25 | answer | added | telcoM | timeline score: 1 | |
| Dec 19, 2023 at 20:46 | comment | added | Vince D | @ChrisDavies I have added as much extra information as I can think of. | |
| Dec 19, 2023 at 20:45 | history | edited | Vince D | CC BY-SA 4.0 |
added 1804 characters in body
|
| Dec 19, 2023 at 19:58 | comment | added | Chris Davies | OK. Put all this in your question - there's so much you left out that's now been added to the comments - and I'll see if I can write you can answer. Please make it quite clear what you can do already, what you want to do, and what issues/errors you encounter trying to do whatever it is that you can't do. For example, the admin account using SFTP is a new item in the process. Why can't they just log in with ssh in the normal manner? Why would you want to run sudo from an FTP client, and why are you even trying to use FTP if you've configured SFTP? They're different protocols entirely. | |
| Dec 19, 2023 at 18:40 | comment | added | Vince D | @ChrisDavies My admin is still unable to add or remove files from any directory other than /home/ftpadmin I also am unable to run sudo from my FTP client. | |
| Dec 19, 2023 at 18:36 | history | edited | Marcus Müller |
edited tags
|
|
| Dec 19, 2023 at 18:35 | comment | added | Chris Davies |
Using sudo is equivalent to being root. So if your admin has root privileges then the permissions you've assigned can be (and are) ignored.
|
|
| Dec 19, 2023 at 18:29 | comment | added | Vince D | @ChrisDavies No, the admin is however sudoed. How can I change the permissions for my admin to give me the abilities that I would like. | |
| Dec 19, 2023 at 18:26 | history | edited | Vince D | CC BY-SA 4.0 |
added 1 character in body
|
| Dec 19, 2023 at 18:02 | comment | added | Chris Davies |
Is your admin user root? If not, the permissions you've set will correctly restrict actions in the way that you have described
|
|
| Dec 19, 2023 at 18:01 | comment | added | Chris Davies | That's not what your question appeared to say. "While my admin user is able to navigate the server and view the contents of any directory. The user is unable to add or remove any files from the other users directories." - this says to me that you're happy the admin can perform administrative actions but the user is unable to do things (that they should be able to do). | |
| Dec 19, 2023 at 17:54 | history | edited | Vince D | CC BY-SA 4.0 |
added 94 characters in body
|
| Dec 19, 2023 at 17:52 | comment | added | Vince D |
@ChrisDavies I have users locked to their home directory on purpose. I wouldn't want to give an outside user access to the entire server. The admin is able to access files but not add or remove them. ls -ld pickup comes back with drwxrwxr-x 2 root sftp 4096 My issues isn't with an sftp user adding or removing files, it's with my admin. I want the admin to be able to delete old files and add new ones for my end users to pickup.
|
|
| Dec 19, 2023 at 17:01 | comment | added | Chris Davies |
You realise that your directive ChrootDirectory /home/%u locks each user who is a member of the sftp group into their own home directory, and it will be impossible for them to access anyone else's home directory?
|
|
| Dec 19, 2023 at 17:00 | comment | added | Chris Davies | "The user is unable to add or remove any files from the other users directories" - can they access files in these directories? | |
| Dec 19, 2023 at 16:58 | comment | added | Chris Davies |
Please add ls -ld pickup dropoff to your question, replacing pickup and dropoff appropriately. Also, with respect to this output please confirm the group that your users are in
|
|
| S Dec 19, 2023 at 16:55 | review | First questions | |||
| Dec 20, 2023 at 15:46 | |||||
| S Dec 19, 2023 at 16:55 | history | asked | Vince D | CC BY-SA 4.0 |