Re: Log file *detailed* content description
On 12/13/23 08:24, Dave Close wrote: I asked: For example, given the message, Accepted publickey for ... from ... port ... ssh2: RSA SHA256:QSyKp5SJ8gJFcYtbtb9SQ1axtqSg7fEoQBiZf3kPXgU what is the meaning of the RSA value listed? Is it a "fingerprint"? How can I compare it to the various keys on my system? Roberto Ragusa answered: ssh-keygen -lf ~/.ssh/id_rsa.pub This comes up easily on Google. I wasn't asking for the value related to my public key. I'm not likely to see whatever the related value for that key might be in an "Accepted publickey" message on my own system. My question was, when someone connects to my system, which key in my authorized_keys file were they using? That seems to have been a more difficult question. But see my next message. Since the command above wants the public key, you just have to provide it with the lines in your authorized_keys. e.g. while read a; do echo "$a"|ssh-keygen -lf -;done <~/.ssh/authorized_keys Regards. -- Roberto Ragusamail at robertoragusa.it -- ___ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Re: Log file *detailed* content description
I asked: > For example, given the message, >Accepted publickey for ... from ... port ... ssh2: RSA > SHA256:QSyKp5SJ8gJFcYtbtb9SQ1axtqSg7fEoQBiZf3kPXgU > what is the meaning of the RSA value listed? Is it a "fingerprint"? > How can I compare it to the various keys on my system? Roberto Ragusa answered: >ssh-keygen -lf ~/.ssh/id_rsa.pub > >This comes up easily on Google. I wasn't asking for the value related to my public key. I'm not likely to see whatever the related value for that key might be in an "Accepted publickey" message on my own system. My question was, when someone connects to my system, which key in my authorized_keys file were they using? That seems to have been a more difficult question. But see my next message. -- Dave Close, Compata, Irvine CA +1 714 434 7359 d...@compata.com dhcl...@alumni.caltech.edu "Country music is just folk music for righties and folk music is country music for lefties." -- J.D. Tuccille -- ___ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Re: Log file *detailed* content description
On Dec 12, 2023, at 01:34, Dave Close wrote:
>
> So I spent the last 30 minutes or so trying to find a detailed
> description of the content of /var/log/secure. Sure, I know the purpose
> of the file and most of the messages are self-explanatory. But some
> of the message content is not. I was surprised that multiple search
> engines were unable to find anything beyond the obvious ("Keep
> authentication logs for both successful ..."). Doesn't Fedora's
> documentation anywhere describe this file in some detail?
What gets logged to that file is defined in your /etc/rsyslog.conf. I believe
by default, it’s any syslog entries with the “authpriv” facility is sent to
/var/log/secure.
It’s up to each service to define the facility, there’s no dictionary of log
entries you can look up. Heck, you can run “logger -p authpriv.warn HelloWorld”
and it should show up in the secure log.
> For example, given the message,
> Accepted publickey for ... from ... port ... ssh2: RSA
>SHA256:QSyKp5SJ8gJFcYtbtb9SQ1axtqSg7fEoQBiZf3kPXgU
> what is the meaning of the RSA value listed? Is it a "fingerprint"?
> How can I compare it to the various keys on my system?
Most likely part of OpenSSH’s documentation.
--
Jonathan Billings
--
___
users mailing list -- users@lists.fedoraproject.org
To unsubscribe send an email to users-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
Re: Log file *detailed* content description
On 12/12/23 07:33, Dave Close wrote:
So I spent the last 30 minutes or so trying to find a detailed
description of the content of /var/log/secure. Sure, I know the purpose
of the file and most of the messages are self-explanatory. But some
of the message content is not. I was surprised that multiple search
engines were unable to find anything beyond the obvious ("Keep
authentication logs for both successful ..."). Doesn't Fedora's
documentation anywhere describe this file in some detail?
For example, given the message,
Accepted publickey for ... from ... port ... ssh2: RSA
SHA256:QSyKp5SJ8gJFcYtbtb9SQ1axtqSg7fEoQBiZf3kPXgU
what is the meaning of the RSA value listed? Is it a "fingerprint"?
How can I compare it to the various keys on my system?
ssh-keygen -lf ~/.ssh/id_rsa.pub
This comes up easily on Google.
Regards.
--
Roberto Ragusamail at robertoragusa.it
--
___
users mailing list -- users@lists.fedoraproject.org
To unsubscribe send an email to users-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
Log file *detailed* content description
So I spent the last 30 minutes or so trying to find a detailed
description of the content of /var/log/secure. Sure, I know the purpose
of the file and most of the messages are self-explanatory. But some
of the message content is not. I was surprised that multiple search
engines were unable to find anything beyond the obvious ("Keep
authentication logs for both successful ..."). Doesn't Fedora's
documentation anywhere describe this file in some detail?
For example, given the message,
Accepted publickey for ... from ... port ... ssh2: RSA
SHA256:QSyKp5SJ8gJFcYtbtb9SQ1axtqSg7fEoQBiZf3kPXgU
what is the meaning of the RSA value listed? Is it a "fingerprint"?
How can I compare it to the various keys on my system?
--
Dave Close, Compata, Irvine CA +1 714 434 7359
d...@compata.com dhcl...@alumni.caltech.edu
"Politics have no relation to morals." -- Niccolo Machiavelli
--
___
users mailing list -- users@lists.fedoraproject.org
To unsubscribe send an email to users-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
