Before the update to 25.04, the design of locking users in the form of an added code worked fine.
Match group work_users
ChrootDirectory %h
ForceCommand internal-sftp
X11Forwarding no
AllowTcpForwarding no
Match group home_users
ChrootDirectory %h
ForceCommand internal-sftp
X11Forwarding no
AllowTcpForwarding no
After updating to 25.04 with such additional parameters, SCALE refuses to start the SSH service and returns an error.
[EFAULT] Apr 18 05:55:19 systemd[1]: Starting ssh.service - OpenBSD Secure Shell server… Apr 18 05:55:19 sshd[4447]: /etc/ssh/sshd_config line 30: Directive ‘UsePAM’ is not allowed within a Match block Apr 18 05:55:19 systemd[1]: ssh.service: Control process exited, code=exited, status=255/EXCEPTION Apr 18 05:55:19 systemd[1]: ssh.service: Failed with result ‘exit-code’. Apr 18 05:55:19 systemd[1]: Failed to start ssh.service - OpenBSD Secure Shell server. Apr 18 05:55:19 systemd[1]: ssh.service: Scheduled restart job, restart counter is at 1. Apr 18 05:55:19 systemd[1]: Stopped ssh.service - OpenBSD Secure Shell server. Apr 18 05:55:19 systemd[1]: Starting ssh.service - OpenBSD Secure Shell server…
If you comment out the Match group, the SSH service will start
What has changed in 25.04 ?
How do I lock users in my home directory now?
Why is the Match group now considered an error?
How to select user groups in your directories now (ChrootDirectory)