[Bug 973] sshd behaves differently while doing syslog entries for tcpwrappers denied message, with -r and without -r option.

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Mon Jan 24 23:47:31 EST 2005


http://bugzilla.mindrot.org/show_bug.cgi?id=973


dtucker at zip.com.au changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Keywords|openbsd                     |




------- Additional Comments From dtucker at zip.com.au  2005-01-24 23:47 -------
It appears that OpenBSD's libwrap (or, more likely, its syslog libraries) are
not fooled so easily.  The refuse message always goes to the default log
(/var/log/messages on my box) and not to sshd's SyslogFacility, regardless of
whether or not reexec is invoked and/or messages are logged before the refuse.

I suspect it boils down to what the OS does in this case:

openlog(..., int facility);
syslog(..., "message1");
closelog();
syslog(..., "message2");

It appears that on OpenBSD, message1 will go to different places if the facility
is set.  On other platforms, message2 will end up wherever message1 went (as you
saw).

The upshot is that if we're going to do something about it, it ought to be
-Portable only (new patch to follow).



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.




More information about the openssh-bugs mailing list