I looked through the FAQ and archive and haven't seen an mention of
this. Has it been considered making the sftp logging patch maintain by
Michael Martinez at sftplogging.sourceforge.net a part of the main
stream sftp-server? Being able to configure the default umask for sftp
users who don't run a shell, and providing ftp level logging
functionality typically available in other ftp servers to be important
security features that openssh should provide by default. Is there any
history on this that I'm not aware of?


-- Ralf Durkee, CISSP, GSEC, GCIH, GSNA
Principal Security Consultant

openssh-unix-dev mailing list