PS: I'm running OpenSSH_5.3p1 Debian-3ubuntu4, OpenSSL 0.9.8k 25 Mar 2009 On Oct 7, 2010, at 3:47 PM, Perry Wagle wrote: >> Actually, the attempted username, source IP address, and source port are >> logged. This is done in auth.c. At least that is the case in cvs HEAD >> and looks like it goes back at least as far as 5.1p1.