BrentKnight + ssh   89

ssh - SFTP logging: is there a way? - Server Fault
OpenSSH versions 4.4p1 and up (which should include the latest version with CentOS 5) have SFTP logging capability built in - you just need to configure it.

Find this in your sshd_config:

Subsystem sftp /usr/libexec/openssh/sftp-server
and change it to:

Subsystem sftp /usr/libexec/openssh/sftp-server -l INFO
INFO is just one level of detail over what you're seeing by default - it provides detailed information regarding file transfers, permission changes, etc. If you need more info, you can adjust the log level accordingly. The various levels (in order of detail) are:

QUIET, FATAL, ERROR, INFO, VERBOSE, DEBUG, DEBUG1, DEBUG2, and DEBUG3
Anything over VERBOSE is probably more information than you're looking for, but it might be useful.

shareimprove this answer
edited Sep 6 '12 at 18:45

Dana the Sane
706617
answered Oct 13 '09 at 23:21

rvf
83778
    
I didn't know you could log SFTP like that, that's what I need. Where does it store the logs? /var/log/auth.log ? –  Rory Jan 22 '10 at 15:17
2  
It depends on your syslog configuration. Using the INFO loglevel, most default syslog.conf's place those entries in /var/log/messages. –  rvf Feb 2 '10 at 20:02
2  
Is it possible to do this using the internal sftp server? –  Cian Feb 22 '11 at 16:40
bl-sftp  sftp  config  ssh  scp  OpenSSH  infosec  sysadmin 
june 2015 by BrentKnight
« earlier      
per page:    204080120160

related tags

access  admin  administration  agent-forwarding  alternative  alternativeTo:make  Apache-Commons  application  at  automation  background  backup  Backups  bash  best  best-practices  bl-sftp  blacklocus  blog  Bookmarks  BookmarksMenu  Bookmarks_Bar  Bookmarks_Menu  brew  build  cheatsheet  cli  command  command-line  commandline  config  console  cross-platform  cryptography  cygwin  delve  DenyHosts  devops  devtools  DigitalOcean  disown  do  docs  documentation  dtrace  duplicity  EMACS_GDB  EMACS_TABS  email  emulator  encryption  essential  example  examples  expect  fabric  Fail2Ban  faq  filesystem  filetype:pdf  firewall  fix  forwarding  freeware  fs  ftp  FTPS  fugu  fuse  git  GitHub  gui  guide  hack  hacking  home  home-server  homebrew  hosting  how-to  howto  i/o  illustrated  imported  infosec  install  internals  internet  iOS  ipfw  iPhone  ipv6  iterm2  java  JCraft  JScape  JSch  keychain  laptop  leopard  lftp  library  lifehacker  links  linux  mac  macfuse  macosx  make  media:document  menuling  mercurial  Migrated_Bookmarks  MOSX  msysgit  MyBookLive  networking  nohup  official  online  open  opensource  openssh  oreilly-dev-center  osx  paramiko  paramiko-alternative  port-forwarding  powershell  practices  protocol  proxy  ProxyCommand  pure-java  putty  python  Python_#3  rackspace  recipes  redo  reference  remote  remote-access  remote-administration  rsync  s3  samba  sample  scp  screen  screenshots  security  server  setup  sftp  shell  shortcut  shuttle  SideStep  smackdown  snippets  SO  socat  SOCKS  solaris  source  spipe  spiped  ssh  ssh-add  ssh-agent  ssh-alternative  ssh-keygen  ssh-tunnel  ssh-tunnel-alternative  ssh-tunnel-manager  ssh2  sshcommandprotocol  sshd  sshfs  sshlib  sshpass  sshtm  sshuttle  StackOverflow  StackOverflow__StackExchange__etc.  stars:5  storage  superuser  sync  synchronization  sysadmin  telecommuting  telnet  terminal  terminal-emulator  the-djb-way  tips  tmux  to-download  to-grok  to-read  to-share  to-try  tool  tools  tricks  tunnel  tutorial  tutorials  unbuffered  uninstall  Unison  unix  upload  utilities  utility  vim  vnc  vpn  vt100  wiki  wikipedia  windows  windows-tools  windows7  Zehon 

Copy this bookmark:



description:


tags: