(Dec 29) New version 0.9.8-18 has been released

[HOW TO] Jailkit on SFTP Chroot plugin for SSH and SFTP Topic is solved

Section with modification and patches for Vesta
Forum rules
Before creating a new topic or reply on the forum you should fill out additional fields "Os" and "Web" in your profile section.
In case of violation, the topic can be closed or response from the support will not be received.
scope
Posts: 6
Joined: Sat Nov 05, 2016 7:25 pm

[HOW TO] Jailkit on SFTP Chroot plugin for SSH and SFTP  Topic is solved

Postby scope » Tue Dec 06, 2016 7:52 am

Hello guys, today I'm publishing my first VestaCP modification :D

Jailkit chrooting for Vesta Control Panel v0.9.8-17

This is a modification I've made to VestaCP code which implements Jailkit chrooting. With this modification you're able to restrict users to their home directories on SSH and SFTP. VestaCP v0.9.8-17 already have a plugin for this named SFTP Chroot, so this works over it, that means you need to buy the plugin for getting this to work. The difference witheen the SFTP Chroot plugin and this modification is that you're able to give users SSH or SFTP access restricted to their home directory, with the official plugin you are only able to use SFTP restriction. It is useful if for example you wanna allow a user to use composer, or any other shell command you desire.

Read the How to? for understanding a little bit more what it does.

GitHub repository

Requirements

Roadmap

Installation

How to?

License

Do not doubt taking a look at the code and leaving your feedback. Thanks!
Greetings from Argentina.

mike08
Posts: 156
Joined: Sat Jun 20, 2015 7:12 am

Re: [HOW TO] Jailkit on SFTP Chroot plugin for SSH and SFTP

Postby mike08 » Wed Dec 07, 2016 1:43 pm

This should be posted as an idea for next releases as this is really useful. Will be testing it on our nodes and see how it goes! :)

scope
Posts: 6
Joined: Sat Nov 05, 2016 7:25 pm

Re: [HOW TO] Jailkit on SFTP Chroot plugin for SSH and SFTP

Postby scope » Thu Dec 08, 2016 1:26 pm

mike08 wrote:This should be posted as an idea for next releases as this is really useful. Will be testing it on our nodes and see how it goes! :)


Thanks! Let me know if you find any issue :)

mike08
Posts: 156
Joined: Sat Jun 20, 2015 7:12 am

Re: [HOW TO] Jailkit on SFTP Chroot plugin for SSH and SFTP

Postby mike08 » Fri Jan 20, 2017 12:08 pm

I made some modifications on the scripts in order to include the right bin path for Debian 7, however whenever a new user is created and granted the recommended ssh access, the user can still do something like this.

UserA <-- Restricted ssh
Can run

Code: Select all

nano /home/userb/web/domain/public_html/wp-config.php

And get a read permissions of the php file containing DB details.


Return to “Modification & Patches”



Who is online

Users browsing this forum: No registered users and 3 guests