Re: Debugging SFTP for openSSH 4.4p1

Cam Macdonell wrote:
OpenSSH sftp seems to contain a fair number of debug() statements. However, I am curious how to specify -l and -f flags when sftp-server is being launched as a subsystem of sshd.

The syntax of "Subsystem" in sshd_config was extended to allow it to have arguments as well.

Typically you would put something like this in sshd_config (and then restart sshd).

Subsystem sftp /usr/libexec/sftp-server -l VERBOSE

--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.

Relevant Pages

  • Re: sftp and restricted shell
    ... I still gets "subsystem: cannot stat sftp-server: No such ... file or directory" from sshd -d ouput. ... > most likely the system path, or put a symlink to sftp-server in ...
    (comp.security.ssh)
  • Re: sftp and restricted shell
    ... via do_exec_no_pty) to run sftp-server. ... The problem is that sshd stats the subsystem executable first, ... Good judgement comes with experience. ...
    (comp.security.ssh)
  • Re: Sftp logs
    ... My sftp-server man page wasn't containing ... Here is sshd output: ... You need to enable logging in sftp-server as it's not enabled by default. ... Good judgement comes with experience. ...
    (comp.security.ssh)
  • Re: how would openssh react face to an attack ?
    ... >but how would it react face to an attack? ... account after X password failures. ... if the OS doesn't support lockout then sshd doesn't either. ... Good judgement comes with experience. ...
    (comp.security.ssh)
  • Re: telnet tunnelling ssh
    ... >That host has ssh package installed and sshd up and running. ... >(All looks silly but it's the truth) ... >connection already established? ... Good judgement comes with experience. ...
    (comp.security.ssh)