[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#481721: openssh-server: sshd does not include a remote address when logging usage of blacklisted keys

tags 481721 pending

On Sun, May 18, 2008 at 09:31:59AM +0200, Helmut Grohne wrote:
> sshd[00000]: Public key 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00 blacklisted (see ssh-vulnkey(1))
> That's a line from sshd when one tries to use a blacklisted key. In
> order to reduce the load on a server it would be great if one could use
> fail2ban or denyhosts to stop people from trying blacklisted keys. This
> would require an ip address to be logged. Please do it.

Done in CVS. Thanks for the suggestion.

> It would also be good if this could be changed in Etch, too.

I don't expect to do this straight away (since the immediate emergency
has passed), but after some testing in unstable I'll probably ask the
security team to incorporate a number of improvements from unstable.

Colin Watson                                       [cjwatson@debian.org]

Reply to: