Mar 9 09:39:09 localhost sftp-server: lstat name "/root" Mar 9 09:39:07 localhost sftp-server: realpath "." Logging without chroot Single fileīasically, if we don't use chroot, we can rely on the default configuration and the only thing needed is to allow logging from sftp-server by adding command-line arguments to the Subsystem sftp line in /etc/ssh/sshd_config: Subsystem sftp /usr/libexec/openssh/sftp-server -l VERBOSEĪfter restarting sshd and performing sftp session, these lines will appear in /var/log/messages: Mar 9 09:39:07 localhost sftp-server: received client version 3 On the next lines, I would like to elaborate on the possibilities. This was finally solved in RHEL 6 using file descriptor passing and in RHEL 7 this feature is achieved using a privileged monitor. In the past, there were problems with logging user activity in chrooted environment because of missing files to do so. Using sftp to store data on a file server became a popular and secure way.
0 kommentar(er)
