1. Forum
  2. Usenet
  3. COMP.SECURITY.SSH

  • Add user name to sftp logs?

    From Nathan Zook@21:1/5 to All on Tue Jul 11 10:59:33 2023
    I maintain an sftp server for a small company with a bunch of not-very-technical clients.

    We've implemented chroot'ed sftp basically following the advise from https://www.the-art-of-web.com/system/sftp-logging-chroot/.

    With scores of accounts, we've gone with a single chroot for all users, and rely on the file system permissions to keep them from seeing each others uploads. They share a group (which triggers the force command to sftp). When they connect, it is to
    their home directory under the chroot. If they immediately upload the file, (instead of cd'ing), the file name is logged with just the filename, which might not relate to the client name.

    What I'm thinking about is something like SftpInternalLogPrefix that would accept some of the already-existing tokens.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Johnnie W Adams@21:1/5 to Nathan Zook on Mon Jul 17 09:42:43 2023
    How does one post to this Group?

    On Tuesday, July 11, 2023 at 12:59:35 PM UTC-5, Nathan Zook wrote:
    I maintain an sftp server for a small company with a bunch of not-very-technical clients.

    We've implemented chroot'ed sftp basically following the advise from https://www.the-art-of-web.com/system/sftp-logging-chroot/.

    With scores of accounts, we've gone with a single chroot for all users, and rely on the file system permissions to keep them from seeing each others uploads. They share a group (which triggers the force command to sftp). When they connect, it is to
    their home directory under the chroot. If they immediately upload the file, (instead of cd'ing), the file name is logged with just the filename, which might not relate to the client name.

    What I'm thinking about is something like SftpInternalLogPrefix that would accept some of the already-existing tokens.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Chris Townley@21:1/5 to Johnnie W Adams on Mon Jul 17 21:04:02 2023
    On 17/07/2023 17:42, Johnnie W Adams wrote:
    How does one post to this Group?

    On Tuesday, July 11, 2023 at 12:59:35 PM UTC-5, Nathan Zook wrote:
    I maintain an sftp server for a small company with a bunch of not-very-technical clients.

    We've implemented chroot'ed sftp basically following the advise from https://www.the-art-of-web.com/system/sftp-logging-chroot/.

    With scores of accounts, we've gone with a single chroot for all users, and rely on the file system permissions to keep them from seeing each others uploads. They share a group (which triggers the force command to sftp). When they connect, it is to
    their home directory under the chroot. If they immediately upload the file, (instead of cd'ing), the file name is logged with just the filename, which might not relate to the client name.

    What I'm thinking about is something like SftpInternalLogPrefix that would accept some of the already-existing tokens.

    You just have!

    --
    Chris

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)