Bug#481721: openssh-server: sshd does not include a remote address when logging usage of blacklisted keys
tags 481721 pending
thanks
On Sun, May 18, 2008 at 09:31:59AM +0200, Helmut Grohne wrote:
> sshd[00000]: Public key 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00 blacklisted (see ssh-vulnkey(1))
>
> That's a line from sshd when one tries to use a blacklisted key. In
> order to reduce the load on a server it would be great if one could use
> fail2ban or denyhosts to stop people from trying blacklisted keys. This
> would require an ip address to be logged. Please do it.
Done in CVS. Thanks for the suggestion.
> It would also be good if this could be changed in Etch, too.
I don't expect to do this straight away (since the immediate emergency
has passed), but after some testing in unstable I'll probably ask the
security team to incorporate a number of improvements from unstable.
--
Colin Watson [cjwatson@debian.org]
Reply to: