Re: Logging attempted passwords
From: Darren Tucker (dtucker_at_zip.com.au)
Date: 10/22/04
- Previous message: Patrice.Gonthier_at_alcatel.fr: "Re: Controlling ssh from an external program"
- In reply to: David Vestal: "Re: Logging attempted passwords"
- Next in thread: Derek Martin: "Re: Logging attempted passwords"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 22 Oct 2004 16:17:27 +1000 To: David Vestal <dv_secfocus@sbcglobal.net>
David Vestal wrote:
>>>I am running OpenSSH 3.5p1 on a linux server.
>>>
> You are correct, it does already log the account and time and those I already
> have. But I would also like to have the password that was tried, if it is
> possible.
OpenSSH will not log the password that was attempted, nor is there an
option to do so. If you want this you'll have to modify sshd yourself
(look at auth-passwd.c).
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
- Previous message: Patrice.Gonthier_at_alcatel.fr: "Re: Controlling ssh from an external program"
- In reply to: David Vestal: "Re: Logging attempted passwords"
- Next in thread: Derek Martin: "Re: Logging attempted passwords"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
