src/usr.bin/ssh/sftp-server.8 - diff

Return to sftp-server.8 CVS log

Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/sftp-server.8 between version 1.28 and 1.29

version 1.28, 2019/11/30 07:07:59

version 1.29, 2020/06/22 05:53:26

Line 35

.Op Fl d Ar start_directory

.Op Fl f Ar log_facility

.Op Fl l Ar log_level

.Op Fl P Ar blacklisted_requests

.Op Fl P Ar denied_requests

.Op Fl p Ar whitelisted_requests

.Op Fl p Ar allowed_requests

.Op Fl u Ar umask

.Ek

.Nm

Line 99

DEBUG and DEBUG1 are equivalent.

DEBUG2 and DEBUG3 each specify higher levels of debugging output.

The default is ERROR.

.It Fl P Ar blacklisted_requests

.It Fl P Ar denied_requests

Specify a comma-separated list of SFTP protocol requests that are banned by

the server.

.Nm

will reply to any blacklisted request with a failure.

will reply to any denied request with a failure.

The

.Fl Q

flag can be used to determine the supported request types.

If both a blacklist and a whitelist are specified, then the blacklist is

If both denied and allowed lists are specified, then the denied list is

applied before the whitelist.

applied before the allowed list.

.It Fl p Ar whitelisted_requests

.It Fl p Ar allowed_requests

Specify a comma-separated list of SFTP protocol requests that are permitted

by the server.

All request types that are not on the whitelist will be logged and replied

All request types that are not on the allowed will be logged and replied

to with a failure message.

.Pp

Care must be taken when using this feature to ensure that requests made

Line 122

.Nm .

At present the only feature that may be queried is

.Dq requests ,

which may be used for black or whitelisting (flags

which may be used to deny or allow specific requests (flags

.Fl P

and

.Fl p