| View previous topic :: View next topic |
| Author |
Message |
sorrodos
n00b
Joined: 22 Apr 2004
Posts: 54
Location: Salt Lake City, UT *and* Spokane, WA
|
 Posted: Fri Jul 23, 2004 6:00 am Post subject: Why is sftp-server running? |
 |
|
I am not really familar with sshd configuration, but I thought that in order for sftp-server to be run along with sshd, the config file had to explicitly state that.
Here is my config file, the default one with the ebuild of openssh I have installed.
| Code: | # $OpenBSD: ssh_config,v 1.19 2003/08/13 08:46:31 markus Exp $
# This is the ssh client system-wide configuration file. See
# ssh_config(5) for more information. This file provides defaults for
# users, and the values can be changed in per-user configuration files
# or on the command line.
# Configuration data is parsed as follows:
# 1. command line options
# 2. user-specific file
# 3. system-wide file
# Any configuration value is only changed the first time it is set.
# Thus, host-specific definitions should be at the beginning of the
# configuration file, and defaults at the end.
# Site-wide defaults for various options
# Host *
# ForwardAgent no
# ForwardX11 no
# RhostsRSAAuthentication no
# RSAAuthentication yes
# PasswordAuthentication yes
# HostbasedAuthentication no
# BatchMode no
# CheckHostIP yes
# AddressFamily any
# ConnectTimeout 0
# StrictHostKeyChecking ask
# IdentityFile ~/.ssh/identity
# IdentityFile ~/.ssh/id_rsa
# IdentityFile ~/.ssh/id_dsa
# Port 22
# Protocol 2,1
# Cipher 3des
# Ciphers aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes2
56-cbc
# EscapeChar ~ |
Basically, I don't understand why I can sftp into the machine in question... Can anyone clarify this for me?
Thanks!
_________________
Sorro Dos
American Bodhisattva :: My pen is a pistola... |
|
| Back to top |
|
 |
starachna
Tux's lil' helper
Joined: 17 Apr 2003
Posts: 104
Location: south africa
|
| Posted: Fri Jul 23, 2004 6:19 am Post subject: hi |
|
|
have a look at /etc/ssh/sshd_config ...
look for this
# override default of no subsystems
Subsystem sftp /usr/lib/misc/sftp-server
ciao
_________________
http://www.3am.co.za - za psy trance |
|
| Back to top |
|
|
sorrodos
n00b
Joined: 22 Apr 2004
Posts: 54
Location: Salt Lake City, UT *and* Spokane, WA
|
| Posted: Fri Jul 23, 2004 6:32 am Post subject: |
|
|
Ah, I see something now..
I posted /etc/ssh/ssh_config, which is the client configuration file. My bad, I'm an idiot...
Does anyone know how to cause sftp-server to run on a different port than the remote login server? It would be nice to be able to run sftp-server on a different port so I could open sftp-server up to the internet and not have to be worried about users logging into my server from outside my home network.
_________________
Sorro Dos
American Bodhisattva :: My pen is a pistola...
Last edited by sorrodos on Fri Jul 23, 2004 6:38 am; edited 1 time in total |
|
| Back to top |
|
|
starachna
Tux's lil' helper
Joined: 17 Apr 2003
Posts: 104
Location: south africa
|
| Posted: Fri Jul 23, 2004 6:35 am Post subject: |
|
|
hello i know what file you posted ... the one i posted was sshd_config - note the D --> sshD_config - they are 2 different files ...
ps. this should be done on the server, the machine you are sftp'ing into ...
ciao
_________________
http://www.3am.co.za - za psy trance |
|
| Back to top |
|
|
sorrodos
n00b
Joined: 22 Apr 2004
Posts: 54
Location: Salt Lake City, UT *and* Spokane, WA
|
| Posted: Fri Jul 23, 2004 6:40 am Post subject: |
|
|
Yeah, I noticed that I posted the wrong file after I posted last... so I edited my last post.
Sorry for the slip up... I know this should be done on the maching acting as the server.
Do you know the answer to my other question though?
_________________
Sorro Dos
American Bodhisattva :: My pen is a pistola... |
|
| Back to top |
|
|
starachna
Tux's lil' helper
Joined: 17 Apr 2003
Posts: 104
Location: south africa
|
| Posted: Fri Jul 23, 2004 6:45 am Post subject: |
|
|
i use pure-ftpd - very nice with virtual users in mysql here is a link
http://www.pureftpd.org - have a look at the FAQ
all the best!
it's friday!
_________________
http://www.3am.co.za - za psy trance |
|
| Back to top |
|
|
sorrodos
n00b
Joined: 22 Apr 2004
Posts: 54
Location: Salt Lake City, UT *and* Spokane, WA
|
| Posted: Fri Jul 23, 2004 7:38 am Post subject: |
|
|
When utilizing FTP-over-SSH mode, is Pure-FTP compatible with a regular sftp client?
So could I login to such a pure-ftp server by typing "sftp pureftp.server.com:XX" ??
I believe that I need a server that is compatible w/ that...
_________________
Sorro Dos
American Bodhisattva :: My pen is a pistola... |
|
| Back to top |
|
|
gnuageux
Veteran
Joined: 17 Apr 2004
Posts: 1201
|
|
| Back to top |
|
|
joaander
Tux's lil' helper
Joined: 30 Apr 2004
Posts: 132
|
| Posted: Fri Jul 23, 2004 11:54 am Post subject: |
|
|
| You could run two sshd servers with different config files. One is your disabled sftp and the other has it enabled. One way do this by making a copy of gentoo's sshd script in init.d and call it sshd_nosftp, passing an argument for a different config file in there. |
|
| Back to top |
|
|
ctford0
l33t
Joined: 25 Oct 2002
Posts: 774
Location: Lexington, KY,USA
|
| Posted: Fri Jul 23, 2004 12:22 pm Post subject: |
|
|
sftp is just an extension to ssh. It should not be associated in any way with other ftp clients. When you login to a machine using sftp you have to enter usernames and passwords just like you do when ssh'ing from one machine to another. From my understanding, everything should be encrypted with sftp as well, so no chance of anyone spoofing your passwords like with other ftp clients. sftp just adds the familiar frontend of ftp to the scp command I suppose.
chris |
|
| Back to top |
|
|
|
Networking & Security
