SFTP and rsyslogd not actually logging. Config help?
I want to log everything I can about what's happening over my SFTP service. The service works fine, but I cannot get it to log anything.
I'm using Fedora 16. Here is my config additions... /etc/ssh/sshd_config: - Code:
Subsystem sftp internal-sftp -f LOCAL5 -l VERBOSE Code:
local5.* /var/log/sftpd.log Code:
service rsyslog restart It's running in an SFTP chroot jail, if it's makes a difference, but my gut instinct is that's not the problem. Any help please? |
Update - SFTP logging *does* appear to work with accounts outside the chrooted SFTP account environment. So it must be something to do with that. Any ideas from here? Thanks.
|
Sounds like a permissions problem. Selinux? Try creating the configured log file, /var/log/sftpd.log (touch /var/log/sftpd.log) and change the owner to whatever user is running in the chroot (chown user:user /var/log/sftpd.log). You might need to do all that as root.
|
I think it means somehow that the chrooted user cannot write to the sftpd.log as it's outside the jail. I don't really understand this as it's supposed to be handled by rsyslog which is a system service. Whut? Is there a way to configure rsyslog to write a log to it's own jail while at the same time being invisible to the chrooted user? This is assuming I cannot write this chrooted user's activities to the normal /var/log/sftpd.log as it can for "normal" SFTP users who are not chrooted.
This stuff is good and secure but a right pain to set up. :-/ |
All times are GMT -5. The time now is 06:14 PM. |