Hi Darren - thanks for the reply! The so-called "normal" logging is working - the problem is it's tragically incomplete. We store IP information on the server. In addition, it's not possible to have security without accountability. I was able to modify sftp-server.c to our needs, i.e., basically log every sftp command issued - including the names of the files transferred - tagged with user name and stored in a seperate log file. If anyone is interested in what I did I would more than happy to share it - otherwise I won't bore you to death. In short, I solved the my problem and thanks! -- Cinaed On Wed, Sep 2, 2009 at 6:27 PM, Darren Tucker<dtucker@xxxxxxxxxx> wrote: > Agile Aspect wrote: >> >> Hi - I' m trying to log file names of the files which are transferred >> (basically in the same manner as vsftp, proftpd, etc.) but regardless >> of how high I turn on debugging, the file name won't show up! > > How did you try configuring it? > > Basically you just need to add the -l and -f options to the sftp-server line > in sshd_config to specify the appropriate syslog level and facility and > restart sshd to pick up the changes. See sftp-server(8) man page for > details. syslog will also need to be configured appropriately. > > -- > Darren Tucker (dtucker at zip.com.au) > GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69 > Good judgement comes with experience. Unfortunately, the experience > usually comes from bad judgement. > -- "We are drowning in information and starving for knowledge." -- Rutherford D. Roger