Darren Tucker wrote:
> Lars Nooden wrote:
>> How can umask be set on the remote host for chrooted sftp users?
>
> You can set it on the server side with sftp-server's "-u" option but
> that's very new (post 4.6).
>
> You would have something like this in sshd_config:
>
> Subsystem sftp sftp-server -u 0022
Thanks, Darren. I see also that it's now also possible to explicitly
specify the identity file to use (-i) with the sftp client. Both are,
for me, sought after improvements.
The sftp-server manual page in -current mentions the user's default
umask. How is that default found?
I notice that ssh-keygen still won't take data from a redirect or pipe.
Is there a saftey or developmental reason for that? It'd be very nice
to be able to use redirection with it as with other programs.
e.g. :
ssh-keyscan host.example.org | ssh-keygen -lf -
instead of
ssh-keyscan host.example.org | ssh-keygen -lf /dev/stdin
Regards,
/Lars
