Mirrors/sftpgo
1
0
Fork 0
mirror of https://github.com/drakkan/sftpgo.git synced 2025-12-06 06:10:54 +03:00
Code Issues Packages Projects Releases Wiki Activity
2,272 Commits 9 Branches 53 Tags
22c875c0a1e8fd4cd3c47a5a8f709a9497a1e454
Commit Graph

50 Commits

Author SHA1 Message Date
Nicola Murino
22c875c0a1 sftpd: add support for OpenPubkey SSH 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2025-11-19 09:16:56 +01:00
Nicola Murino
35525e22e9 remove rsync support 
rsync was executed as an external command, which means we have no insight
into or control over what it actually does.
From a security perspective, this is far from ideal.

To be clear, there's nothing inherently wrong with rsync itself. However,
if we were to support it properly within SFTPGo, we would need to implement
the low-level protocol internally rather than relying on launching an external
process. This would ensure it works seamlessly with any storage backend,
just as SFTP does, for example.
We recommend using one of the many alternatives that rely on the SFTP
protocol, such as rclone

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2025-09-28 18:15:15 +02:00
Nicola Murino
f4092b9f9e sftpd: use VerifiedPublicKeyCallback 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2025-09-28 09:22:27 +02:00
Nicola Murino
d2ee43585a remove x/crypto fork 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2025-09-21 14:21:47 +02:00
Nicola Murino
fe78974b47 remove data retention hook 
use the EventManager instead

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2025-07-14 18:22:32 +02:00
Nicola Murino
3f7533b86a update deps ... 
... and adapt the code to the new constants I added to
golang.org/x/crypto/ssh

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2025-05-19 19:42:36 +02:00
Nicola Murino
5954d4ae20 sshconn: use a generic io.Closer instead of a net.Conn 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2025-04-02 18:52:06 +02:00
Nicola Murino
2255c5f000 upgrade golangci-lint to v2 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2025-03-29 11:36:19 +01:00
Nicola Murino
66ec11a19f fix typo 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2025-03-08 15:49:30 +01:00
Nicola Murino
bf0961458c remove some unnecessary string conversions 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2025-01-04 11:58:37 +01:00
Nicola Murino
e21c989038 logs: add a specific log structure for successful logins 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-07 10:29:33 +01:00
Nicola Murino
ed5ff9c5cc sftpd: remove allocator 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-21 07:52:24 +01:00
Nicola Murino
f22ec2275f fix new lint warnings 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-10 20:58:22 +01:00
Nicola Murino
d94f80c8da replace utils.Contains with slices.Contains 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-07-24 18:27:13 +02:00
Nicola Murino
8bc08b25dc sftp: limit max file list 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-17 19:24:03 +02:00
Nicola Murino
0127fc188b SSH: allow to configure minimum key size for DHGEX 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-23 18:08:16 +02:00
Nicola Murino
50a3c0d911 defender: allow to impose a delay between login attempts 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-18 10:35:54 +02:00
Nicola Murino
eb0c6549c4 micro optimization 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-12 18:10:03 +02:00
Nicola Murino
5d24d665bd add an util method to convert []byte to string 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-08 19:01:58 +02:00
Nicola Murino
d3f42e39db move server version setting to common section 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-01 19:42:09 +02:00
Nicola Murino
aa426016f2 sftpd: remove folder_prefix 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-26 11:43:25 +02:00
Nicola Murino
26d19abf61 remove reading data provider username and password from file 
This reverts #1455 because the contributor cannot sign the CLA

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-26 10:57:38 +02:00
Nicola Murino
ad7dcdb628 ssh: remove the ability to fully customize the software version 
many clients rely on the version string to enable/disable some features.
We only allow to hide the version number, clients must be able to reliably
identify SFTPGo

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-20 17:15:15 +02:00
Nicola Murino
456517af87 notifier plugin: add support for login succeeded events 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-10 18:39:08 +02:00
Nicola Murino
be2ed1089c ssh: add username to sftp auth errors 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-25 15:45:50 +01:00
Nicola Murino
f7d9e56cac ssh: remove moduli, log negotiated algorithms 
Fixes #1324

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-24 20:35:09 +01:00
Nicola Murino
ad75543172 fix some new lint warnings 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-15 21:13:45 +01:00
Nicola Murino
1ff55bbfa7 add DirLister interface 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-15 20:53:56 +01:00
Nicola Murino
c49553abd0 keyboard interactive: ask only the passcode if it is the second step 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-05 19:02:01 +01:00
Nicola Murino
69da5c10c6 WIP new WebAdmin: configs page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-27 12:48:15 +01:00
Nicola Murino
0d387d9799 prefer errors.As to errors.Is 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-21 15:46:38 +01:00
Nicola Murino
784b7585c1 remove end year from Copyright notice in files 
so we don't have to update all the files every year

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-01 11:31:45 +01:00
Nicola Murino
c5c5860012 ssh: allow to configure public key auth algorithms 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-09 20:03:04 +01:00
Nicola Murino
f05fe78737 ssh: refactor host key algorithm restriction 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-10-07 16:07:19 +02:00
Nicola Murino
75e6ef6132 sftpd: remove diffie-hellman-group18-sha512 KEX 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-08-04 21:10:39 +02:00
Nicola Murino
af0d7b48ad sftpd: refactor multi-step authentication 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-08-04 20:56:23 +02:00
Nicola Murino
324d695d93 try to fix a randomly failing test case 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-06-08 19:41:58 +02:00
Nicola Murino
4eded56d5f add support for log events 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-05-12 18:34:59 +02:00
Nicola Murino
354fc9b3d6 OIDC: allow to extract custom fields from sub-structs 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-23 18:15:07 +01:00
Nicola Murino
dba088daed printf: replace %#v with the more explicit %q 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-27 19:19:57 +01:00
Nicola Murino
a3fff56da5 WebAdmin: add configs section 
Setting configurations is an experimental feature and is not currently
supported in the REST API

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-19 19:03:45 +01:00
Nicola Murino
1b1745b7f7 move IP/Network lists to the data provider 
this is a backward incompatible change, all previous file based IP/network
lists will not work anymore

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-09 09:33:33 +01:00
Nicola Murino
27c4ffd663 sftpd: fix duplicate defender error introduced in the previous commit 
improve the defender test cases by verifying the expected score

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-01-25 21:57:27 +01:00
Nicola Murino
c0fe08b597 defender: allow to set a different score for "no auth tried" events 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-01-25 18:49:03 +01:00
Nicola Murino
0190d0b849 update Copyright year 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-01-03 10:18:30 +01:00
Nicola Murino
a22282f275 add support for DHGEX 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-11-17 18:15:53 +01:00
Nicola Murino
5a222807b7 add roles 
Fixes #837

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-11-16 19:04:50 +01:00
Nicola Murino
e3e85867b1 sftpfs: reuse connections 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-11-01 12:22:54 +01:00
Nicola Murino
db0e58ae7e Add support for graceful shutdown 
Fixes #1014

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-10-22 11:56:41 +02:00
Nicola Murino
c8158e14e0 move SFTPGo package to the internal folder 
SFTPGo is a daemon and command line tool, not a library.

The public API are provided by the SDK

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-07-24 16:18:54 +02:00