I want to permit some users to access on their user account with SSH.
I have found the way to doing this by adding their ssh key and select the bash access on their account.
My question is about security : once the user connected by ssh, he can navigate inside some root directories : /etc and /var/cache for examples.
Is it OK on a production use case ?
Can’t we secure this ssh connection to give only the access to the home’s user directory ?
What about if my ssh user’s computer is corrupted by malware ?
OK but if I read this topic I understand than I have to set nologin option.
However my user need is to access on their apache2 logs in realtime, and sometime scp and rsync commands.
So for now, is there a jailed ssh access to the home directory or not yet ?
Thanks for explanations.
How much do you ask for this development ?
Maybe we can crowdfund it with several HestiaCP users if the cost is too important for me ?