Extend logging of openssh-server - e.g. plaintext password
Philipp Vlassakakis
philipp at vlassakakis.de
Sun Dec 18 19:27:33 AEDT 2016
Works like a charm.
Thanks Stephen! :)
> Am 18.12.2016 um 01:48 schrieb Stephen Harris <lists at spuddy.org>:
>
> On Sun, Dec 18, 2016 at 01:37:59AM +0100, Philipp Vlassakakis wrote:
>> I want to extend the logging of the openssh-server, so it also logs the entered passwords in plaintext, and yes I know that this is a security issue, but relax, Password Authentication is disabled. ;)
>>
>> The logging is only used for collecting data on my honeypots.
> ...
>> Is there any way to implement this?
>
> I explored this a few months back in a blog entry:
> https://www.sweharris.org/post/2016-09-18-ssh-password-exposure/
>
More information about the openssh-unix-dev
mailing list