Enhancement #3292

« Previous | Next »

vsftpd logging too verbose by default

Added by Filippo Carletti almost 6 years ago. Updated almost 6 years ago.

Status:CLOSEDStart date:
Priority:NormalDue date:
Assignee:-% Done:

100%

Category:nethserver-vsftpd
Target version:v6.7
Resolution: NEEDINFO:No

Description

vsftpd log every command very verbosely by default. I propose to log only access (login) and file transfer by default.
Debugging sessions could manually raise the log level if necessary.

Associated revisions

Revision aaae0ba8
Added by Filippo Carletti almost 6 years ago

vsftpd.conf: disable ftp protocol logging. Refs #3292

History

#1 Updated by Filippo Carletti almost 6 years ago

  • Status changed from NEW to TRIAGED
  • Assignee set to Filippo Carletti
  • % Done changed from 0 to 20

Exaple of verbose logging:

Mon Oct 26 08:10:03 2015 [pid 29559] [gis] FTP response: Client "192.168.1.68", "331 Please specify the password." 
Mon Oct 26 08:10:03 2015 [pid 29559] [gis] FTP command: Client "192.168.1.68", "PASS <password>" 
Mon Oct 26 08:10:03 2015 [pid 29558] [gis] OK LOGIN: Client "192.168.1.68" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", "230 Login successful." 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP command: Client "192.168.1.68", "PWD" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", "257 "/"" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP command: Client "192.168.1.68", "SYST" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", "215 UNIX Type: L8" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP command: Client "192.168.1.68", "FEAT" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", "211-Features:" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", " EPRT??" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", " EPSV??" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", " MDTM??" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", " PASV??" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", " REST STREAM??" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", " SIZE??" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", " TVFS??" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", " UTF8??" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", "211 End" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP command: Client "192.168.1.68", "SYST" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", "215 UNIX Type: L8" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP command: Client "192.168.1.68", "TYPE I" 
Mon Oct 26 08:10:03 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", "200 Switching to Binary mode." 
Mon Oct 26 08:10:05 2015 [pid 29563] [gis] FTP command: Client "192.168.1.68", "TYPE I" 
Mon Oct 26 08:10:05 2015 [pid 29563] [gis] FTP response: Client "192.168.1.68", "200 Switching to Binary mode."

#2 Updated by Filippo Carletti almost 6 years ago

Proposed enhancement:

-log_ftp_protocol=YES
+log_ftp_protocol=NO

#3 Updated by Filippo Carletti almost 6 years ago

  • Subject changed from vsftpd loggin to verbose by default to vsftpd logging to verbose by default

#4 Updated by Filippo Carletti almost 6 years ago

  • Status changed from TRIAGED to ON_DEV
  • % Done changed from 20 to 30

#5 Updated by Filippo Carletti almost 6 years ago

  • Status changed from ON_DEV to MODIFIED
  • Assignee deleted (Filippo Carletti)
  • % Done changed from 30 to 60

#6 Updated by Filippo Carletti almost 6 years ago

  • Subject changed from vsftpd logging to verbose by default to vsftpd logging too verbose by default
  • Status changed from MODIFIED to ON_QA
  • % Done changed from 60 to 70

Package in nethserver-testing:
nethserver-vsftpd-1.0.4-1.2.gaaae0ba.ns6.x86_64

Test case:
update and check log option:

# grep log_ftp_protocol /etc/vsftpd/vsftpd.conf
log_ftp_protocol=NO

Additionally, check that /var/log/vsftpd.log doesn't contain details after an ftp transfer (see above for a verbose example).

#7 Updated by Giacomo Sanchietti almost 6 years ago

  • Assignee set to Giacomo Sanchietti

#8 Updated by Giacomo Sanchietti almost 6 years ago

  • Status changed from ON_QA to VERIFIED
  • Assignee deleted (Giacomo Sanchietti)
  • % Done changed from 70 to 90

System and Package Version installed

Package Installed: nethserver-vsftpd-1.0.4-1.2.gaaae0ba.ns6.noarch
Other Package installed: Base system

Test Original Problem
Logging too verbose

Install Updated Package

yum --enablerepo=nethserver-testing update nethserver-vsftpd

Test Results after update

[root@localhost ~]# grep log_ftp_protocol /etc/vsftpd/vsftpd.conf 
log_ftp_protocol=NO

Verified Or Reopen
Verified

#9 Updated by Giacomo Sanchietti almost 6 years ago

  • Status changed from VERIFIED to CLOSED
  • % Done changed from 90 to 100
Released in nethserver-updates:
  • nethserver-vsftpd-1.0.5-1.ns6.noarch.rpm

Also available in: Atom PDF