# CREATE LINUX USER
Create Restricted Bash User
```bash
sudo useradd -m markesa8 -s /bin/rbash
sudo passwd markesa8
```
ENTER PASSWORD
```bash
sudo mkdir /home/markesa8/bin
sudo ln -s /bin/mkdir /home/markesa8/bin
sudo ln -s /bin/ls /home/markesa8/bin
sudo ln -s /bin/ssh /home/markesa8/bin
sudo chown root. /home/markesa8/.profile
sudo chmod 755 /home/markesa8/.profile
```



## Apache2 permissions
```
sudo chown -R www-data:www-data /home/markesa2
sudo systemctl reload apache2
```



## GIT
Config GIT, to get pull permissions from:
```bash
    sudo chown -R markesa:markesa /home/markesa/web/.git
    sudo chmod -R 755 /home/markesa/web/.git
```

## RESTART SSH
sudo systemctl restart ssh


## ADDITIONAL

SET
    ```bash
    sudo nano /etc/ssh/sshd_config
    ```
write:
```bash
Match User markesa
    ChrootDirectory /home/markesa
    # ForceCommand internal-sftp # allows only FTP if enabled
    AllowTcpForwarding no
    X11Forwarding no
```

## SSH
Copy SSH public key and add to Profile Gitlab / Settings / SSH keys:
    su - markesa
    ssh-keygen -t rsa -b 4096 -C "sukys.gediminas@gmail.com"
    cat ~/.ssh/id_rsa.pub

## Create FTP
Posibilities
1. See only /home/markesa/ directory with FTP
2. Can access only to /home/markesa/ via SSH (terminal)
3. Can do "git pull" command on the /home/markesa/ directory
4. dosn't have sudo permissions

## Debug

Auth fails log:
```bash
    sudo tail -f /var/log/auth.log
```

## Debug User, other info