Re: Question about ~/.ssh/rc and internal-sftp
Am 06.02.2019 um 12:13 schrieb Jiri B: > Yes, you can but then you cannot use `internal-sftp` because it is > "internal" sshd process. > You must populate chroot in your ChrootDirectory, on Linux you also > need to have /dev/log > there. > > I use this solution to rsync uploaded files to other host. Thank you. > Jiri Regards aleks > On Wed, Feb 6, 2019 at 10:49 AM Aleksandar Lazic wrote: >> >> Hi. >> >> I hope this list is the right one to ask openssh questions, in case I'm wrong >> here please point me to the right list/channel, thanks. >> >> We use sftp for uploads and iWatch to post process the uploaded files. >> >> We have several Match blocks in our /etc/ssh/sshd_config >> >> ``` >> Match User user001 >> ForceCommand internal-sftp >> AllowAgentForwarding no >> AllowTcpForwarding no >> X11Forwarding no >> ChrootDirectory /home/user001 >> ``` >> >> Can I replace the ForceCommand with a script which triggers a post process >> tool and use Subsystem for internal-sftp ? >> >> Version: OpenSSH_7.2p2 >> OS: Ubuntu 16.04 LTS >> >> The Idea is that after a successful upload a post process script is running >> so the we can remove the iWatch. >> >> Thank you for any help. >> >> Regards >> Aleks >> >
Question about ~/.ssh/rc and internal-sftp
Hi. I hope this list is the right one to ask openssh questions, in case I'm wrong here please point me to the right list/channel, thanks. We use sftp for uploads and iWatch to post process the uploaded files. We have several Match blocks in our /etc/ssh/sshd_config ``` Match User user001 ForceCommand internal-sftp AllowAgentForwarding no AllowTcpForwarding no X11Forwarding no ChrootDirectory /home/user001 ``` Can I replace the ForceCommand with a script which triggers a post process tool and use Subsystem for internal-sftp ? Version: OpenSSH_7.2p2 OS: Ubuntu 16.04 LTS The Idea is that after a successful upload a post process script is running so the we can remove the iWatch. Thank you for any help. Regards Aleks
Re: relayd port to linux
On Sam 06.11.2010 01:51, Joe McDonagh wrote: On 11/05/2010 05:31 PM, Aleksandar Lazic wrote: Do you know a good replacement for stunnel with http-header rewrite on non openbsd OS?! Well, besides Marco being right about the best Unix system for networking out there (OpenBSD, keep in mind I manage a lot of reenucksh systems too), I would check out nginx or mod_proxy_balancer. I am big into puppet (uses ssl for communication), and I load balance with mod_proxy_balancer, and I know a lot of people who use nginx (but not me). Thanks for all your answers. It was only a idea to have another small handy tool like stunnel for ssl termination only. Normally I use nginx (proxy module can't use keepalive) or delegate for this.
Re: relayd port to linux
On Fre 05.11.2010 10:45, Theo de Raadt wrote: due to the fact that openssh and some other parts of openbsd are ported to linux maybe you can tell me if you plan to make a openrelayd which is able to compile on linux. relayd depends deeply on pf. so the answer is no. ok, sorry for rush. Do you know a good replacement for stunnel with http-header rewrite on non openbsd OS?!
relayd port to linux
Dear Listmember, due to the fact that openssh and some other parts of openbsd are ported to linux maybe you can tell me if you plan to make a openrelayd which is able to compile on linux. I'am willing to try it by my self, maybe you can help me to miss the most common pitfalls ;-). thanks Aleks