Re: [patch] postauth processes to log via monitor

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

 



On 10/01/2014 03:33 PM, Petr Lautrbach wrote:
> Hi,
> 
> there is a long standing problem with logging in chroots. Especially,
> when you use %u in ChrootDirectory, it is nearly impossible to have
> /dev/log in every possible chroot for all users.
> 
> It seems to be important mainly for sftp-internal session which are
> simply configurable to be chrooted and where admins would like to log
> sftp session commands.
> 
> I have put together a patch which introduces a new configuration option
> LogViaMonitor. When this option is 'yes', then postauth unprivileged
> processes log via their monitor process instead of via standard channels
> (syslog, stderr).
> 
> I've removed closefrom() from close_child_fds() in order not to close
> m_log_send_fd socket before sftp_server_main() is called. And I've put
> it to a part of code where it's clear that there will be exec().
> 
> I'd appreciate any comment or suggestion.
> 

Ping?

Do you have any comments, objections or hints?

Thanks,

Petr
-- 
Petr Lautrbach

_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev




[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux