Re: log scp interactions with openssh
From: IRCGNet (ircgnet_at_gmail.com)
Date: 09/29/05
- Previous message: Jeff Rosowski: "Re[2]: log scp interactions with openssh"
- In reply to: Jeff Rosowski: "Re[2]: log scp interactions with openssh"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 29 Sep 2005 03:49:24 -0700 To: Jeff Rosowski <rosowskij@ie.ymp.gov>
Jeff Rosowski wrote:
>> I'm afraid you do not understand my intention. I do *not* want to
>> disable
>> the filetransfer for users. But I'd like to know what happens on my
>> system.
>> SFTP and shell interactions can be logged. Unfortunately scp not.
>>
>> The sftplogging patch for openssh is a good idea but can be bypassed
>> by the user
>> with scp. This is my problem.
>
> I use scponly, which is a shell replacement that only allowes scp/sftp
> file transfers for a user, does logging, and allows you to chroot the
> user. It also don't require recompiling or doing crazy patches to
> ssh, which is a nice feature.
>
We also use scponly and it works great. It allows admins who need the
access to specific areas the power they need but nothing more. Check it
out if you haven't already. I think you'll find it will suite most
organizational needs.
Michael
- Previous message: Jeff Rosowski: "Re[2]: log scp interactions with openssh"
- In reply to: Jeff Rosowski: "Re[2]: log scp interactions with openssh"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
