Subject: Re: Permissions problem with mod_sftp

Re: Permissions problem with mod_sftp

From: Peter Stuge <>
Date: Wed, 30 May 2012 15:36:38 +0200

TJ Saunders wrote:
> I looked into this, and tracked down the issue.

Thanks for this. I just pushed a modified version of your fix.

> The libssh2 SFTP library code always sends file permissions when
> opening a file, regardless of whether that file is going to be
> opened for reading or for writing. And on the server end, the
> mod_sftp module always honors any permissions sent by the client,
> regardless of whether the file is being opened for reading or writing.
> Arguably this is not the best behavior for both the client and the server
> end of things,

It's actually a protocol break by the server.

--8<-- draft-ietf-secsh-filexfer-13.txt page 33
The 'attrs' field is ignored if an existing file is opened.

Anyway it's not a big deal for us to only send if not open read-only.

Received on 2012-05-30