File tree Expand file tree Collapse file tree 2 files changed +3
-2
lines changed Expand file tree Collapse file tree 2 files changed +3
-2
lines changed Original file line number Diff line number Diff line change 114114
115115 # sshd sftp options
116116 server [ 'sftp' ] [ 'enable' ] = false
117+ server [ 'sftp' ] [ 'log_level' ] = 'VERBOSE'
117118 server [ 'sftp' ] [ 'group' ] = 'sftponly'
118119 server [ 'sftp' ] [ 'chroot' ] = '/home/%u'
119120 server [ 'sftp' ] [ 'password_authentication' ] = false
Original file line number Diff line number Diff line change @@ -214,11 +214,11 @@ AcceptEnv <%= @node['ssh-hardening']['ssh']['server']['accept_env'].join(' ') %>
214214# Configuration, in case SFTP is used
215215## override default of no subsystems
216216## Subsystem sftp /opt/app/openssh5/libexec/sftp-server
217- Subsystem sftp internal-sftp -l VERBOSE
217+ Subsystem sftp internal-sftp -l <%= @node['ssh-hardening']['ssh']['server']['sftp']['log_level'] %>
218218
219219## These lines must appear at the *end* of sshd_config
220220Match Group <%= @node['ssh-hardening']['ssh']['server']['sftp']['group'] %>
221- ForceCommand internal-sftp -l VERBOSE
221+ ForceCommand internal-sftp -l <%= @node['ssh-hardening']['ssh']['server']['sftp']['log_level'] %>
222222ChrootDirectory <%= @node['ssh-hardening']['ssh']['server']['sftp']['chroot'] %>
223223AllowTcpForwarding no
224224AllowAgentForwarding no
You can’t perform that action at this time.
0 commit comments