Back to list
sftp-server logging under chroot & privilege separation
Mar 08 2010 05:53PM
kjh26 chrysler com
We are using OpenSSH 5.3p1.
We are using this to host an SFTP drop-box. We have implemented chroot &
For corporate security reasons, we are running sshd as an application ID
setuid root (long story - don't want to go into it here)
The issue we are noting is that we 'lose' SFTP logging of commands when
sshd is run normally.
When we run it in DEBUG, we see the SFTP commands in the log.
We suspected the chrooting/priv sep had something to do with it, however,
changing the sftp-server to be setuid root did not fix the issue.
Kevin J. Herman
Sr. Systems Analyst
EBMX [Electronic Business Message eXchange]
ITM - Procurement Systems
[ reply ]
Copyright 2010, SecurityFocus