A production ready SFTP server on Ubuntu 24.04 LTS built on OpenSSH, preinstalled and hardened. Confine each user to a chroot jailed home directory on a dedicated data disk, authenticate by SSH key or by password on demand, and manage accounts with one command. Backed by 24/7 cloudimg support.
## SFTP Server on Ubuntu 24.04 LTS by cloudimg
A production ready SFTP file transfer server built on OpenSSH, the open source secure shell suite, on Ubuntu 24.04 LTS for Microsoft Azure and maintained by cloudimg. The image delivers a fully configured, security hardened SFTP service within minutes of deployment, so you can onboard users and move files securely without hand editing the SSH daemon configuration. Backed by 24/7 expert support.
Chroot Jailed Users
Every SFTP user is locked into their own home directory with an OpenSSH chroot jail. A user can only see and write inside their own space, never the rest of the filesystem, and is given no interactive shell. User home directories live on a dedicated, independently resizable Azure data disk mounted at /srv/sftp, kept separate from the operating system disk and re-provisioned with every VM.
SSH Key And Password Authentication
The image ships key only, the secure default. Users authenticate with an SSH key out of the box, and password authentication can be enabled for SFTP users with a single command, or automatically the first time you create a password user. The administrator account always stays key only. SSH keys for SFTP users are managed in a central, root owned location outside every jail, so file ownership rules are always correct.
One Command User Management
A small set of management tools makes day to day operation simple: create a user with an SSH key or a generated password, set a per user disk quota, list users and their usage, reset or lock passwords, enable or disable password logins, and remove users. These tools are the primary interface to the server.
Hardened By Default
Brute force protection bans repeat offenders with fail2ban, per user disk quotas stop any one account filling the data disk, and transfer audit logging records every upload, download and delete to the system journal for compliance. Password authentication is off by default and forwarding features are switched off.
Why Choose cloudimg?
* 24/7 Expert Support with guaranteed 24 hour response. Contact support@cloudimg.co.uk
* Production Ready from Launch Pre configured, security patched, and validated before publication
* Azure Native Integration Built with Azure Linux Agent, cloud init, and Gen2 Hyper V
Use Cases
Secure file exchange with customers and partners, managed file transfer and drop boxes, application and backup upload targets, per user isolated storage, and compliance focused transfer with audit trails.
All product and company names are trademarks or registered trademarks of their respective holders. Use of them does not imply any affiliation with or endorsement by them.