Date: Tue, 31 Mar 2015 17:16:11 -0400 From: Lowell Gilbert <freebsd-security-local@be-well.ilk.org> To: Slawa Olhovchenkov <slw@zxy.spb.ru> Cc: freebsd-security@freebsd.org Subject: Re: ftpd don't record login in utmpx Message-ID: <44k2xwuauc.fsf@be-well.ilk.org> In-Reply-To: <20150331110215.GZ23643@zxy.spb.ru> (Slawa Olhovchenkov's message of "Tue, 31 Mar 2015 14:02:15 %2B0300") References: <20150330142543.GD74532@zxy.spb.ru> <44y4me9gfi.fsf@lowell-desk.lan> <20150331034402.GE74532@zxy.spb.ru> <551A561C.5000904@digiware.nl> <20150331084426.GX23643@zxy.spb.ru> <551A6A1D.5030307@digiware.nl> <20150331094915.GY23643@zxy.spb.ru> <551A76B4.6050306@digiware.nl> <20150331110215.GZ23643@zxy.spb.ru>
index | next in thread | previous in thread | raw e-mail
Slawa Olhovchenkov <slw@zxy.spb.ru> writes: > On Tue, Mar 31, 2015 at 12:28:04PM +0200, Willem Jan Withagen wrote: >> Well that is only in your eyes. wtmp moved (on) to a different way of >> storing the data. At that point in time nobody had a problem with that. >> And in 5 years you are the first one to be vocal about it. > > All others still using old version? No. Quite the opposite. My guess is that this feature was *never* very widely used. All of the information that it provides can be sent to the system logs instead. And if you want more user-based information, many types are *only* availabe on the system log. As a bonus, better management and analysis tools are available for system log formats. > I don't ask what I need do. > I just ask why switch off logging. FTP logging did not get turned off. FTP logging from inside of a chroot to outside of a chroot got turned off. As for why this happened, the answer is that the procedure you used to use depended on a feature of wtmp. Eventually, wtmp was replaced by utmpx to support unrelated new features. This meant that ftpd could no longer modify wtmp files, because there no longer *are* any wtmp files. As a final note, I'll point out that in principle, it's possible to implement this feature in a more reasonable way. That involves having a separate privileged task to handle closing sessions. Some alternative FTP daemons are able to do this, but they generally suggest turning it off because it increases resource usage by quite a bit.help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44k2xwuauc.fsf>