[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: sshd: Logging illegal users

On Sun, 2004-08-15 at 19:15 +0200, Thomas Hungenberg wrote:
> Hello,
> sshd included with Debian/sarge logs connection attempts with illegal
> usernames this way:
> sshd[xxx]: Illegal user <username> from xxx.xxx.xxx.xxx
> sshd[xxx]: Failed unknown for illegal user <username> from xxx.xxx.xxx.xxx port xxxxx ssh2
> However, the older sshd version from Debian/woody by default only logs
> the following when trying to connect with an illegal username:
> sshd[xxx]: Connection from xxx.xxx.xxx.xxx port xxxxx
> sshd[xxx]: Enabling compatibility mode for protocol 2.0
> Is there a way to make the sshd included with Debian/woody to also log
> the usernames an attacker tried to connect with?

Hey, I have found some thing. Rather than repost. I'll share where I
posted it.


Check it out.
greg, greg@gregfolkert.net

The technology that is
Stronger, better, faster:  Linux

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to: