Re: how to know who failed to connect to sshd?
From: Darren Tucker (dtucker_at_dodgy.net.au)
Date: 04/18/04
- Next message: Darren Tucker: "Re: ssh double tunnel problem"
- Previous message: Samjack: "Re: ssh double tunnel problem"
- In reply to: sam: "how to know who failed to connect to sshd?"
- Next in thread: Darren Tucker: "Re: how to know who failed to connect to sshd?"
- Reply: Darren Tucker: "Re: how to know who failed to connect to sshd?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 17 Apr 2004 23:50:20 GMT
In article <c5p8hp$1hli$1@news.hgc.com.hk>,
sam <samwun@hgcbroadband.com> wrote:
>When ssh conection failed, the /var/log/messages only show the follwoing
> msg without the client's host address:
>
>sshd[2168]: error: PAM: Authentication failure
>
>How do you I also log down the client's host address in this case?
Try applying this patch and recompiling:
http://www.zip.com.au/~dtucker/openssh/openssh-pam-namelog.patch
It will apply to a recent snapshot, you can grab one from:
ftp://ftp.ca.openbsd.org/pub/OpenBSD/OpenSSH/portable/snapshot/
It will apply to 3.8p1 but it won't work.
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
- Next message: Darren Tucker: "Re: ssh double tunnel problem"
- Previous message: Samjack: "Re: ssh double tunnel problem"
- In reply to: sam: "how to know who failed to connect to sshd?"
- Next in thread: Darren Tucker: "Re: how to know who failed to connect to sshd?"
- Reply: Darren Tucker: "Re: how to know who failed to connect to sshd?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
