Re: Not to log file xfers

From: Simon Tatham (anakin_at_pobox.com)
Date: 12/16/04

• Next message: all mail refused: "Re: MacSSH connecting to BSD"
• Previous message: David Nixon: "Not to log file xfers"
• In reply to: David Nixon: "Not to log file xfers"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 16 Dec 2004 11:40:12 +0000 (GMT)

David Nixon <djn@csc.liv.ac.uk> wrote:
> I was surprised to discover that, with 'sftp', logging only came as a
> patch. This is a marked contrast to 'sftp2'; with its "SftpSyslogFacility"
> configuration option.
>
> Was the absence of transfer logs conceived as a privacy mechanism, or
> was it simply an oversight ?

Bear in mind that SFTP is only one of many ways to achieve file
transfer over SSH. If my server's SFTP client did logging and I
happened to want to perform an unlogged file transfer, I could just
do things like this:

  ssh remotehost 'cat > uploaded' < file-to-upload
  ssh remotehost 'cat file-to-download' > downloaded
  tar czvf - directory-to-upload | ssh remotehost 'tar xzf -'
  ssh remotehost 'tar czf - directory-to-download' | tar xzvf -

and since I never invoked the SFTP binary, it would never do its
logging.

I would _guess_ (although this is just a guess) that someone decided
there was no point in making an SFTP server log in most situations,
since there was no way to ensure the log was complete or reliable.

It's probably something I'd have reasoned in the same situation:
free software authors are generally reluctant to spend time and
effort on creating restrictions and `security' measures which are
very easy to bypass. The feeling is that you should either make them
difficult or (preferably) impossible to bypass, or not bother with
them at all.

Of course, if you have a specialist setup - such as an account which
can _only_ be used for SFTP, so that mechanisms like the above are
not possible - then a logging SFTP server might become worth having.
Which might easily be why it's available as a patch.

-- 
Simon Tatham         "Selfless? I'm so selfless I
<anakin@pobox.com>    don't even know who I am."

• Next message: all mail refused: "Re: MacSSH connecting to BSD"
• Previous message: David Nixon: "Not to log file xfers"
• In reply to: David Nixon: "Not to log file xfers"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: sftp file transfer log ... openssh does not support sftp transfer logging. ... > Do you know how to turn on SFTP file transfer log? ... environment to the sftp-server subsystem. ... log("setting file creation mode to 0666 and umask to %o", ... (comp.security.ssh) RE: Need Help with sftp logging in chroot env ... In order to do sftp logging, ... Also, if you use it, and it works for you, please let the openssh ... Do you Yahoo!? ... (SSH) Need Help with sftp logging in chroot env ... the chroot env for sftp only and it works fine. ... there's no logging in the syslog. ... Do you Yahoo!? ... (SSH) Re: HP TCP/IP V5.4 and SSH ... Btw, if you think SSH is logging in in a funny way, try sftp to your ... Neither sylogin, ... (comp.os.vms) Re: Need for SFTP package, including API ... They wish to implement SFTP for document transport, ... > From the research I've done already, it seems most sftp server ... OpenSSH or implement your own. ... libraries. ... (comp.security.ssh)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint