It seems internal sftp-server added to ease chroot suffer from a big missing feature as of 4.8: It is impossible to use sftp logging as with usual external sftp-server.
So open-ssh 5.1 should be considered for Intrepid as logging users is required in many environments (corporate, legal aspects in some countries). Otherwise I think users will stay with current restricted shell + chroot as usual. To ease the process, scponly is easy to use but to be able to log sftp users it's version should be upgraded to 4.8, keeping the creation of /chroot_path/dev/null mknod as of current 4.6_ubuntu version as this null device creation is still missing upstream. Automatically adding -a /chroot_path/dev/log to syslogd for chrooted installs should also be a good idea. On Hardy, compiling from my own scponly 4.8 was the easiest way I found to handle the problem. -- Apply openssh sftp-chroot patch to openssh-server https://bugs.launchpad.net/bugs/24777 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
