Re: sftp-server logging under chroot & privilege separation
- From: Robert Hajime Lanning <robert.lanning@xxxxxxxxx>
- Date: Mon, 8 Mar 2010 14:07:23 -0800
It might be an issue with /dev/log not existing in the chrooted
If you are running syslog-ng, you could tell it to open a second
Unix domain dgram socket. ("unix-dgram(/chroot/path/dev/log);")
On Mon, Mar 8, 2010 at 9:53 AM, <kjh26@xxxxxxxxxxxx> wrote:
We are using OpenSSH 5.3p1.
We are using this to host an SFTP drop-box. We have implemented chroot &
For corporate security reasons, we are running sshd as an application ID
setuid root (long story - don't want to go into it here)
The issue we are noting is that we 'lose' SFTP logging of commands when
sshd is run normally.
When we run it in DEBUG, we see the SFTP commands in the log.
We suspected the chrooting/priv sep had something to do with it, however,
changing the sftp-server to be setuid root did not fix the issue.
Kevin J. Herman
Sr. Systems Analyst
EBMX [Electronic Business Message eXchange]
ITM - Procurement Systems
And, did Galoka think the Ulus were too ugly to save?
- Prev by Date: Re: sftp-server logging under chroot & privilege separation
- Next by Date: Re: sftp-server logging under chroot & privilege separation
- Previous by thread: Re: sftp-server logging under chroot & privilege separation
- Next by thread: Please decrypt your manual