Configuring Logging for ftp

Logging ftp Sessions

You can specify ftp session logging using the log commands keyword in the /etc/ftpd/ftpaccess file.

For details on the preceding keyword, see the ftpaccess(4) manpage.

	NOTE: To enable the /etc/ftpd/ftpaccess file you must specify the -a option in the ftp entry of the /etc/inetd.conf file.

Logging ftp File Transfers

You can log file transfer information from the ftp server daemon to the /var/adm/syslog/xferlog log file. The xferlog file records file transfer information such as current time, file transfer time, remote host, filename, file size, whether the file transfer was in ascii or binary format, etc. For details on all types of information recorded in the xferlog file, see the xferlog(5) manpage.

You can enable file transfer logging either by editing the /etc/ftpd/ftpaccess file or by editing the /etc/inetd.conf file. Each of these methods is described following.

Configuring Logging in the /etc/ftpd/ftpaccess File

To log incoming and outgoing ftp file transfers, edit the /etc/ftpd/ftpaccess file using the log transfers keyword.

log transfers

Enables or disables logging of file transfers for real or anonymous ftp users to /var/adm/syslog/xferlog. Logging of transfers to the server (incoming) can be enabled separately from transfers from the server (outbound).

For details on the preceding keyword, see the ftpaccess(4) manpage.

	NOTE: To enable the /etc/ftpd/ftpaccess file, you must specify the -a option in the ftp entry of the /etc/inetd.conf file.

Example of Configuring Logging in /etc/inetd.conf

In the following example, the /etc/inetd.conf entry logs both incoming and outgoing ftp file transfers.

ftp stream tcp nowait root /usr/lbin/ftpd ftpd -a -l -d -i -o