Have scponly working fine, the issue I'm having is with scponlyc for jailed env.
Within Plesk I setup a web_user. On the shell as root pwd:
/var/www/vhosts/<domain>.com/web_users/totustesting
Perms: drwxr-x--- 8 root psaserv 4096 May 28 11:55 totustesting
The main account via Plesk is setup with chroot sh which resides /var/www/vhosts/<domain>.com/
I cp -r as root: bin, etc, lib, tmp, usr, var to /var/www/vhosts/<domain>.com/web_users/totustesting
[root@mirage totustesting]# ls -al
total 32
drwxr-x--- 8 root psaserv 4096 May 28 11:55 .
drwxr-xr-x 5 root psaserv 4096 May 28 11:29 ..
drwxr-xr-x 2 root root 4096 May 28 11:54 bin
drwxr-xr-x 2 root root 4096 May 28 11:54 etc
drwxr-xr-x 2 root root 4096 May 28 11:54 lib
drwxr-xr-t 40 root root 4096 May 28 11:54 tmp
drwxr-xr-x 6 root root 4096 May 28 11:55 usr
drwxr-xr-x 3 root root 4096 May 28 11:55 var
totustesting bin dir listings
[root@mirage bin]# ls -al
total 3068
drwxr-xr-x 2 root root 4096 May 28 11:54 .
drwxr-x--- 8 root psaserv 4096 May 28 11:55 ..
-rwxr-xr-x 1 root root 735004 May 28 11:54 bash
-rwxr-xr-x 1 root root 23132 May 28 11:54 cat
-rwxr-xr-x 1 root root 68584 May 28 11:54 cp
-rwxr-xr-x 1 root root 69124 May 28 11:54 du
-rwxr-xr-x 1 root root 16964 May 28 11:54 false
-rwxr-xr-x 1 root root 85060 May 28 11:54 grep
-rwxr-xr-x 1 root root 1931 May 28 11:54 groups
-rwxr-xr-x 1 root root 31692 May 28 11:54 head
-rwxr-xr-x 1 root root 22600 May 28 11:54 id
-rwxr-xr-x 1 root root 129984 May 28 11:54 less
-rwxr-xr-x 1 root root 29872 May 28 11:54 ln
-rwxr-xr-x 1 root root 93816 May 28 11:54 ls
-rwxr-xr-x 1 root root 29852 May 28 11:54 mkdir
-rwxr-xr-x 1 root root 32144 May 28 11:54 more
-rwxr-xr-x 1 root root 77856 May 28 11:54 mv
-rwxr-xr-x 1 root root 23084 May 28 11:54 pwd
-rwxr-xr-x 1 root root 44068 May 28 11:54 rm
-rwxr-xr-x 1 root root 18764 May 28 11:54 rmdir
-rwxr-xr-x 1 root root 53740 May 28 11:54 scp
-rwsr-xr-x 1 root root 24092 May 28 11:54 scponlyc
-rwxr-xr-x 1 root root 735004 May 28 11:54 sh
-rwxr-xr-x 1 root root 42828 May 28 11:54 tail
-rwxr-xr-x 1 root root 42284 May 28 11:54 touch
-rwxr-xr-x 1 root root 16964 May 28 11:54 true
-rwxr-xr-x 1 root root 594740 May 28 11:54 vi
/etc/passwd
totustesting
10023
:/var/www/vhosts/<domain>.com/web_users/totustesting:/usr/sbin/scponlyc
[root@mirage bin]# sftp totustesting@<domain>.com
Connecting to <domain>.com...
totustesting@<domain>.com's password:
Connection closed
/var/log/secure <-- RHEL platform
May 28 12:32:25 mirage sshd[31756]: Accepted password for totustesting from <IP> port 45304 ssh2
May 28 12:32:25 mirage sshd[31756]: pam_unix(sshd:session): session opened for user totustesting by (uid=0)
May 28 12:32:25 mirage sshd[31758]: subsystem request for sftp
May 28 17:32:25 mirage scponly[31759]: running: /usr/libexec/openssh/sftp-server (username: totustesting(10023), IP/port: <IP> 45304 22)
May 28 17:32:25 mirage scponly[31759]: failed: /usr/libexec/openssh/sftp-server with error Permission denied(13) (username: totustesting(10023), IP/port: <IP> 45304 22)
May 28 12:32:25 mirage sshd[31756]: pam_unix(sshd:session): session closed for user totustesting
Thanks for input!
Cheers,
Troy