I looked through the FAQ and archive and haven't seen an mention of this. Has it been considered making the sftp logging patch maintain by Michael Martinez at sftplogging.sourceforge.net a part of the main stream sftp-server? Being able to configure the default umask for sftp users who don't run a shell, and providing ftp level logging functionality typically available in other ftp servers to be important security features that openssh should provide by default. Is there any history on this that I'm not aware of? Thanks, -- Ralf Durkee, CISSP, GSEC, GCIH, GSNA Principal Security Consultant http://rd1.net