scponly-4.6* doesn't support new -l/-f option of sftp-server
Bug #196365 reported by
tsekine
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
scponly (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: scponly
1) Ubuntu release
DISTRIB_ID=Ubuntu
DISTRIB_
DISTRIB_
DISTRIB_
2/3) package name/version
scponly-4.6-1.1
4/5) What I expected expected / What happened
openssh-
But scponly doesn't allow any argument for sftp-server.
Then, scponly blocks sftp-server program execution if sshd_config is
set up to use -l or -f option.
To post a comment you must log in.
Confirmed on released Hardy up to date 23 JUIL 08
If you enable debug log in scponly (see scponly wiki), you'll see the sftp-server command is refused because of sftp logging arguments.
This is a problem because SFTP servers are often chrooted to home dirs in production environments and logging users is sometime mandatory (corporate security rules, legal aspects for some services/ countries) . For a LTS version targeting corporate market this is a big issue that should be solved applying given patch or updating to scponly 4.8 (compiled with appropriate option to enable sftp logging).
Regards