[CentOS] scp setup jailed chroot on Centos7

Fri Oct 20 22:41:20 UTC 2017
Rainer Duffner <rainer at ultra-secure.de>

> Am 20.10.2017 um 15:58 schrieb Adrian Jenzer <a.jenzer at herzogdemeuron.com>:
> Dear all
> I'm looking for instructions on how to setup a jailed chroot directory for user which needs to upload via scp to the server.
> Especially I miss clear instructions about what needs to be in the jailed directory available, like binaries, libraries, etc...
> Without jail I get it to work, but I want to prevent user downloading for example /etc folder from the server.
> Does anybody have a link or list valid for Centos7

Can’t you use SFTP?

AFAIK, sftp automatically chroots a user with no valid shell (provided the home directory is owned by root and not writeable by the user and you use Subsystem internal-sftp).