my version of ssh doesn't support 'Match' and 'ForceCommand'?

view full story

http://www.linuxquestions.org – Hello, I am trying to implement a chroot directory for a group of sftp users who all manage a shared directory. The relevant portion of my sshd_config file is below: Subsystem sftp internal-sftp Match Group mygroup ChrootDirectory /foo/bar X11Forwarding no AllowTcpForwarding no ForceCommand internal-sftp when I restart sshd I get these errors: Stopping sshd: [FAILED] Starting sshd: /etc/ssh/sshd_config: line 122: Bad configuration option: Match /etc/ssh/sshd_config (HowTos)

Submitted by robot1 on 07/12/2010 – Made popular on 07/12/2010

Login or register to post comments
Email this page

Stories similar to my version of ssh doesn't support 'Match' and 'ForceCommand'?

User can't SFTP after chroot 33 weeks 5 days ago

Ubuntu 10.04.4 LTS

I'm trying to chroot the user 'sam'.

Setting up a chroot sftp on debian server 31 weeks 4 days ago

I'm trying to allow a user "user" to access my server by either sftp or ssh. I want to jail them into a directory with chroot.

chrooted SSH & SFTP user 41 weeks 6 days ago

Hello there!Going through https://wiki.archlinux.org/index.php/SFTP-chroot and addding a new group with removed ForceCommand parameter from sshd_config still doesn't let me to log in to ssh.

OpenSSH anything like 'internal-sftp' but for SCP? 38 weeks 2 days ago

I'm running Debian stable and I'm looking to establish the following environment for users in my 'sftponly' group:

jailed can transfer with SFTP can transfer with SCP cannot login interactively with SSH

From my experimentation and research, it seems that the following stanza in sshd_config gets me 90% there:

Match group sftponly ChrootDirectory /sftp/%u X11Forwarding no AllowTcpForwarding no

[ubuntu] sftp and chroot connection problems 44 weeks 6 days ago

Hi everybody

I have a ubuntu 10.04.4 server running.

Is there no way to preserve permissions on sftp? 50 weeks 3 days ago

Debian 6

I've setup /etc/ssh/sshd_config as such:

Subsystem sftp internal-sftp -u 0002

Match Group sftp ChrootDirectory %h ForceCommand internal-sftp -u 0002 AllowTcpForwarding no Match

I get the users home to /var/www and chown the owner to root:root.

All good. The user can access via sftp and alter subdirectories.

sftponly with symlink 18 weeks 1 day ago

I did the sftponly trick with sshd. Is there an option to make it following symlinks with to other directories that do not belong to the user?

Match Group sftponly

ChrootDirectory /var/sftp/

X11Forwarding no

AllowAgentForwarding no

AllowTcpForwarding no

ForceCommand internal-sftp

File/Directory permissions for SFTP user 40 weeks 21 hours ago

After using the SSH quite a lot on my 1.5 week old Debian 6 VPS, I wanted to start uploading files through SFTP. I already tried that earlier, but with the root account, which isn't possible with SSH anymore due to security changes.

So I've made a separate user, let's call him sftpuser for now, who belongs to the group sftp.

openssh-server: ChrootDirectory is not allowed within a Match block 32 weeks 4 days ago

My sshd_config looks like this:

Match User c_upload ChrootDirectoy /var/www/upload ForceCommand internal-sftp

etc/init.d/ssh restart fails with this message:

/etc/ssh/sshd_config: line 90: Bad configuration option: ChrootDirectoy /etc/ssh/sshd_config line 90: Directive 'ChrootDirectoy' is not allowed within a Match block

My openssh-server version (according to dpkg AND ssh -v

my version of ssh doesn't support 'Match' and 'ForceCommand'?

Search

Best published stories

Beautiful linux wallpapers

Tags