[scponly] Problems with sftp and new logging options
Kaleb Pederson
kibab at icehouse.net
Fri Dec 8 10:25:29 EST 2006
Hmmm... Which version of OpenSSH and do you have a link to the verbose mode in
question?
It sounds like we should patch this fairly quickly.
BTW (not directly related to this e-mail), I noticed a while back that OpenSSH
can now limit users to a specific subsystem, so OpenSSH could be used without
scponly where SFTP support is all that is needed.
Thanks for the report.
--Kaleb
On Thursday 07 December 2006 23:36, Yavor Shahpasov wrote:
> Hello List,
>
> I am trying to use scponly with the new logging functionality in openssh.
>
> # Old
> Subsystem sftp /usr/lib/misc/sftp-server
> # New
> Subsystem sftp /usr/lib/misc/sftp-server -f USER -l VERBOSE
>
> These new parameter seem to make scponly to fail the requests
>
> Dec 7 04:07:02 **** scponly[13163]: processing request:
> "/usr/lib/misc/sftp-server -f USER -l VERBOSE"
> Dec 7 04:07:02 **** scponly[13163]: denied request:
> /usr/lib/misc/sftp-server -f USER -l VERBOSE [username: ****(1003),
> IP/port: ** 51096 22]
>
> Is it possible that this can be made to work.
>
> Best Regards,
> Yavor Shahpasov
More information about the scponly
mailing list