By using AWS re:Post, you agree to the Terms of Use

SFTP Transfer Family to EFS umask


I have an SFTP Transfer Family server in front of an EFS volume. I recently noticed that any new files/directories that are created are given world writeable permissions. Enter image description here Is there a way to change the default permissions for uploaded files?

1 Answer

SFTP in general does not have a mechanism supported in the protocol for umask. At the server level there are workarounds using a script wrapper to wrap the sftp forked process setting a umask in the wrapper script but that is not an option for the AWS Transfer Family SFTP, the architecture does not allow it.

The best option is to open a customer case to request a feature added to implement EFS umask support within a server managed by AWS Transfer Family.

answered 24 days ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions