gmanley/give_access.sh

## give_access.sh
# This script should be modified and run whenever you need to add another sftp user.

echo "This script needs root access"
sudo -s

### Modify
user=soshistyle
# Directory you want to give access to
base_dir=/var/www/vhosts/style.soshified.com
# The group that should still be able to access $base_dir
base_dir_group=www-data
###

### Don't modify
sftp_group=filetransfer
home=/home/$user
base_dir_mount=$home/$(basename $base_dir)
###

useradd -m -G $sftp_group $user
chown root:root $home
chmod 755 $home
mkdir $base_dir_mount
echo "$base_dir $base_dir_mount none bind 0 0" >> /etc/fstab
mount -a
chown -R $user:$base_dir_group $base_dir_mount
echo "Enter password for $user"
passwd

## setup.md

      
    Raw
  

              setup.md
            
          
    Add the following to your sshd_config file.
Usually either: /etc/ssh/sshd_config or /etc/sshd_config
Subsystem sftp internal-sftp

Match group filetransfer
  PasswordAuthentication yes
  ChrootDirectory %h
  X11Forwarding no
  AllowTcpForwarding no
  ForceCommand internal-sftp
Restart ssh server.
Usually: /etc/init.d/ssh restart
	# This script should be modified and run whenever you need to add another sftp user.

	echo "This script needs root access"
	sudo -s

	### Modify
	user=soshistyle
	# Directory you want to give access to
	base_dir=/var/www/vhosts/style.soshified.com
	# The group that should still be able to access $base_dir
	base_dir_group=www-data
	###

	### Don't modify
	sftp_group=filetransfer
	home=/home/$user
	base_dir_mount=$home/$(basename $base_dir)
	###

	useradd -m -G $sftp_group $user
	chown root:root $home
	chmod 755 $home
	mkdir $base_dir_mount
	echo "$base_dir $base_dir_mount none bind 0 0" >> /etc/fstab
	mount -a
	chown -R $user:$base_dir_group $base_dir_mount
	echo "Enter password for $user"
	passwd