Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
SFTP not configurable #110
So that we can configure the matching group, the ChrootDirectory, AllowAgentForwarding and so on.
I've checked the puppet and ansible ssh-hardening and it looks like only Ansible takes care of the STFP stuff and adds capabilities to Enable and change ChrootDirectory for sftp.
I think the configuration should aswell include Group like you suggested, but I'm currently unsure if its a good security practice to allow the change of the other options like AllowAgentForwarding, PermitRootLogin.
What do you think?