internal-sftp logging sshd
 

I have been looking into how to get logging on my SSH server. I would like to have logs similar to what normal FTPs would have when you connect and download/upload. But the only logging I have been able to find is either VERBOSE or DEBUG. Both of which seem to give too much information. It would be nice if there was a logging mode that was just commands sent to the server, does anyone know if this exists?

In sshd_config, change this:
to:
Add a line into syslog.conf:
Restart sshd, syslog and see it working.

Wouldn't that log all of my auth.info to sftp.log instead of just sftp though?

And you wouldn't happen to know where syslog.conf is located in Ubuntu 9.10 would you?

And I did implant the first part that was what I was looking for thank you. I must have over looked the info logging. verbose just had too much information that was not needed, I guess that is why they call it verbose :)

Because sftp run over ssh, it will included the info such as: session opened, closed in the log file.
/etc/syslog.conf (not sure).

I actually implemented an identical solution like this, however this configuration seems to only log the activity when ever root logs into the Linux machine using sftp but not with user accounts whose login shells have been set as /usr/libexec/openssh/sftp-server.

Any idea on why this would be the case?