[Bug 974] Record Badlogins for all supported Authentication methods

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Fri Feb 4 15:22:42 EST 2005


http://bugzilla.mindrot.org/show_bug.cgi?id=974





------- Additional Comments From dtucker at zip.com.au  2005-02-04 15:22 -------
(In reply to comment #23)
> This patch log for "none" method when login attempt is made by a invalid user.
 > But works correctly for existing valid user (doesn't log for "none" method ) 

That happens earlier than the auth loop (in getpwnamallow).  I'm not sure I want
to change that right now as it's the only place guaranteed to be called for an
invalid user if they try only, eg pubkey authentication then disconnect (because
that occurs purely in the unprivileged child).

We may be able to address that with the AUDIT_EVENTS hooks but those aren't
enabled by default.




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.




More information about the openssh-bugs mailing list