Re: Logging attempted passwords
From: Bartek Krajnik (bmk_at_bicom.pl)
Date: 10/22/04
- Previous message: Greg Wooledge: "Re: Logging attempted passwords"
- In reply to: David Vestal: "Logging attempted passwords"
- Next in thread: pleriche: "Re: Logging attempted passwords"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 22 Oct 2004 13:52:18 +0200 To: secureshell@securityfocus.com
On 20-10-2004 at 03:12:57PM -0700, David Vestal wrote:
DV> Is it possible to have sshd log the passwords and times of failed logins? If
DV> so how to I need to change my config to do so?
DV>
DV> I am running OpenSSH 3.5p1 on a linux server.
DV>
Get openssh-3.5.p1.tar.gz from i.e. ftp.openbsd.org.
Unpack it.
Edit file:
auth-passwd.c
and lines:
92 int
93 auth_password(Authctxt *authctxt, const char *password)
94 {
95 #if defined(USE_PAM)
96 if (*password == '\0' && options.permit_empty_passwd == 0)
97 return 0;
98 return auth_pam_password(authctxt, password);
change for:
92 int
93 auth_password(Authctxt *authctxt, const char *password)
94 {
log("Password: %s", password);
95 #if defined(USE_PAM)
96 if (*password == '\0' && options.permit_empty_passwd == 0)
97 return 0;
98 return auth_pam_password(authctxt, password);
After this:
make
make install
Should be OK.
Best regards,
Bartek.
-- If You want to verify authentication of my e-mail visit: www.bmk.bicom.pl to get from there my public key.
- application/pgp-signature attachment: stored
- Previous message: Greg Wooledge: "Re: Logging attempted passwords"
- In reply to: David Vestal: "Logging attempted passwords"
- Next in thread: pleriche: "Re: Logging attempted passwords"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
