SFTP Logging

Andrew Bartlett abartlet at pcug.org.au
Fri Jun 15 10:27:54 EST 2001


"Jason A . Dour" wrote:
> 
> Hello everyone,
> 
> Has there been any thought given to giving the SFTP subsystem better
> logging capabilities?  We are looking to replace FTP, Telnet, and
> Rexec completely, but our FTP is presently logged and any
> replacement for it would also need to be logged.  Specifically, we
> need to know about file uploads and downloads, deletions. et cetera.
> 
> I've added some logging code to sftp-server.c, and would be happy to
> supply patches if it is of any interest at all.  There obviously
> isn't much code to it, except for an extra function that parses
> pflags into a readable text string.
> 
> Cheers,
> Jason
> # "Jason A. Dour" <jason at dour.org>                  http://dour.org/
> # Founder / Executive Producer - PJ Harvey Online - http://pjh.org/

Remember that it will amout to moot unless you use a restricted shell,
like the one I have posted to this list earlier, as otherwise users can
just use their own SFTP server - without your logging capabilities.

Andrew Bartlett

-- 
Andrew Bartlett
abartlet at pcug.org.au



More information about the openssh-unix-dev mailing list