Skip to content

Instantly share code, notes, and snippets.

/chrooted_sftp_bitrix_vm.sh Secret

Created April 11, 2014 12:34
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save anonymous/eb43eed74a8293d1796c to your computer and use it in GitHub Desktop.
Save anonymous/eb43eed74a8293d1796c to your computer and use it in GitHub Desktop.
Download ZIP
Raw
chrooted_sftp_bitrix_vm.sh
#!/bin/bash
MOUNT_CMD="/bin/mount"
FSTAB="/etc/fstab"
RC_LOCAL="/etc/rc.d/rc.local"
SSHD_CONF="/etc/ssh/sshd_config"
USER_ROOT_DIR="/home/bitrix"
MOUNT_DIR="/var/chroot/bitrix/bitrix"
CHROOT_DIR="/var/chroot/bitrix"
mkdir -p "$MOUNT_DIR"
printf "\n\n$USER_ROOT_DIR $MOUNT_DIR none bind 0 0\n\n" >> "$FSTAB"
printf "\n\n$MOUNT_CMD $MOUNT_DIR\n\n" >> "$RC_LOCAL"
$MOUNT_CMD "$MOUNT_DIR"
cp $SSHD_CONF $SSHD_CONF.bak
sed -i "s~/usr/libexec/openssh/sftp-server~internal-sftp~" "$SSHD_CONF"
printf "\n\nMatch user bitrix\n" >> $SSHD_CONF
printf " ChrootDirectory $CHROOT_DIR\n" >> $SSHD_CONF
printf " ForceCommand internal-sftp\n" >> $SSHD_CONF
printf " AllowTcpForwarding no\n" >> $SSHD_CONF
printf " GatewayPorts no\n" >> $SSHD_CONF
printf " X11Forwarding no\n\n" >> $SSHD_CONF
service sshd restart
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment