-.\" $OpenBSD: sftp-server.8,v 1.28 2019/11/30 07:07:59 jmc Exp $
+.\" $OpenBSD: sftp-server.8,v 1.29 2020/06/22 05:53:26 djm Exp $
.\"
.\" Copyright (c) 2000 Markus Friedl. All rights reserved.
.\"
.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
.\"
-.Dd $Mdocdate: November 30 2019 $
+.Dd $Mdocdate: June 22 2020 $
.Dt SFTP-SERVER 8
.Os
.Sh NAME
.Op Fl d Ar start_directory
.Op Fl f Ar log_facility
.Op Fl l Ar log_level
-.Op Fl P Ar blacklisted_requests
-.Op Fl p Ar whitelisted_requests
+.Op Fl P Ar denied_requests
+.Op Fl p Ar allowed_requests
.Op Fl u Ar umask
.Ek
.Nm
DEBUG and DEBUG1 are equivalent.
DEBUG2 and DEBUG3 each specify higher levels of debugging output.
The default is ERROR.
-.It Fl P Ar blacklisted_requests
+.It Fl P Ar denied_requests
Specify a comma-separated list of SFTP protocol requests that are banned by
the server.
.Nm
-will reply to any blacklisted request with a failure.
+will reply to any denied request with a failure.
The
.Fl Q
flag can be used to determine the supported request types.
-If both a blacklist and a whitelist are specified, then the blacklist is
-applied before the whitelist.
-.It Fl p Ar whitelisted_requests
+If both denied and allowed lists are specified, then the denied list is
+applied before the allowed list.
+.It Fl p Ar allowed_requests
Specify a comma-separated list of SFTP protocol requests that are permitted
by the server.
-All request types that are not on the whitelist will be logged and replied
+All request types that are not on the allowed will be logged and replied
to with a failure message.
.Pp
Care must be taken when using this feature to ensure that requests made
.Nm .
At present the only feature that may be queried is
.Dq requests ,
-which may be used for black or whitelisting (flags
+which may be used to deny or allow specific requests (flags
.Fl P
and
.Fl p
projects / thirdparty / openssh-portable.git / commitdiff
