[Bug 1765] New: Error message if key not first in authorized_keys file

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Thu Apr 29 23:29:33 EST 2010


https://bugzilla.mindrot.org/show_bug.cgi?id=1765

           Summary: Error message if key not first in authorized_keys file
           Product: Portable OpenSSH
           Version: 5.5p1
          Platform: Other
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: sshd
        AssignedTo: unassigned-bugs at mindrot.org
        ReportedBy: anders.liljegren at uadm.uu.se


If a public key with an associated IP address or domain name in the
"from=" field is not on the first line in the authorized_keys file, an
error message is printed twice in the log:

Apr 29 15:20:03 alaemon sshd[16333]: Authentication tried for http with
correct key but not from a permitted host (host=anders.its.uu.se,
ip=130.238.131.142).
Apr 29 15:20:03 alaemon sshd[16333]: Accepted publickey for http from
130.238.131.142 port 60901 ssh2
Apr 29 15:20:03 alaemon sshd[16335]: Received disconnect from
130.238.131.142: 11: disconnected by user
Apr 29 15:20:03 alaemon sshd[16347]: Authentication tried for http with
correct key but not from a permitted host (host=anders.its.uu.se,
ip=130.238.131.142).

The client is logged in anyway, so there is no loss of functionality,
just the two annoying error messages.

This problem was not present in 5.3p1, appeared in 5.4p1, and remain in
5.5p1.

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list