Re: bash_logout and sftp

From: Robert Hajime Lanning (robert.lanning_at_gmail.com)
Date: 05/18/05

  • Next message: Gabriel M. Elder: "known_hosts vulnerability?" 
    Date: Tue, 17 May 2005 15:14:00 -0700
To: secureshell@securityfocus.com

    Has anyone tried changing the "subsystem" entry in sshd_config?

    subsystem sftp /usr/lib/misc/sftp_wrapper

    /usr/lib/misc/sftp_wrapper:
    -----
    #! /bin/sh
    /usr/lib/misc/sftp-server $*
    rsync ... 

    ----
On 5/9/05, Eloi Granado <eloi.granado@millorsoft.net> wrote:
> What about using ProFTPd with SSL support instead? You can generate a xferlog
> or a "ftp commands logfile". Then there are some things you can do with this
> file.
>
> First could be to write a little script which would "tail -f", and execute the
> appropiate rsync commands.
>
> Another option could be to create a named pipe as a source for Syslog-NG, and
> use it as the xferlog or extendedlog of ProFTPd. And then, in Syslog-NG
> define an "exec" destination.
>
> Problem : if they write a lot of small files, you could end launching hundreds
> of simultaneous rsyncs.
>
>
> On Sunday 01 May 2005 11:56, Corey wrote:
> > Using openssh-3.9_p1
> >
> > Is it possible to have  user's ~/.bash_logout invoked after disconnecting
> > from sftp sessions?
> >
> > I was hoping it would be a simple matter of enabling the UseLogin config
> > option.  Does this only really work w/ ssh sessions, or is there something
> > I can do to somehow get this ( or equivalent ) functionality w/ sftp
> > sessions?
> >
> > ( What I'm trying to get working is to execute user-specific rsync jobs for
> > mirroring purposes whenever a user finishes uploading files using sftp - it
> > seemed that a .logout sort of rc script would be the easiest method of
> > doing this; the only other option I can think of is to use a log analyzer
> > to grep for 'session closed for user' msgs )
> >
> >
> > Thanks!
>
--
END OF LINE
       -MCP
-- 
END OF LINE
       -MCP
  • Next message: Gabriel M. Elder: "known_hosts vulnerability?"