On Thu, 19 Aug 2004 11:52:51 +0300 (EEST), Martin Fluch wrote:
> Do you really want to log those illegal user names? If you do so, you
> would run into danger to log passwords in plain text as well, when you
> accidently enter the password when ssh asks you for the user name...
I'm aware of tha
On Fri, 20 Aug 2004 02:26:17 -0600, Will Aoki wrote:
>> > Set "LogLevel VERBOSE" in /etc/ssh/sshd_config
>>
>> LogLevel is already set to VERBOSE. But even with LogLevel DEBUG the
>> invalid usernames are not logged. :-(
>> I tested that on three different machines running Debian/woody.
>
> It wo
On Thu, Aug 19, 2004 at 10:44:40AM +0200, Thomas Hungenberg wrote:
> On Sun, 15 Aug 2004 12:34:59 -0600, Will Aoki wrote:
>
> >> Is there a way to make the sshd included with Debian/woody to also log
> >> the usernames an attacker tried to connect with?
> >
> > Set "LogLevel VERBOSE" in /etc/ssh/s
TH> From: Thomas Hungenberg <[EMAIL PROTECTED]>
TH> Date: Thu, 19 Aug 2004 10:44:40 +0200
TH> LogLevel is already set to VERBOSE. But even with LogLevel DEBUG the
TH> invalid usernames are not logged. :-(
I was explained some time ago by somebody that this is a security
feature rather than a bug
On Thu, 19 Aug 2004, Thomas Hungenberg wrote:
> On Sun, 15 Aug 2004 12:34:59 -0600, Will Aoki wrote:
>
> >> Is there a way to make the sshd included with Debian/woody to also log
> >> the usernames an attacker tried to connect with?
> >
> > Set "LogLevel VERBOSE" in /etc/ssh/sshd_config
>
> LogL
On Sun, 15 Aug 2004 12:34:59 -0600, Will Aoki wrote:
>> Is there a way to make the sshd included with Debian/woody to also log
>> the usernames an attacker tried to connect with?
>
> Set "LogLevel VERBOSE" in /etc/ssh/sshd_config
LogLevel is already set to VERBOSE. But even with LogLevel DEBUG th
On Sun, 2004-08-15 at 19:46 -0600, s. keeling wrote:
> Incoming from Greg Folkert:
> >
> > Hey, I have found some thing. Rather than repost. I'll share where I
> > posted it.
> >
> > http://z.iwethey.org/forums/render/content/show?contentid=169321
>
> "Zope Error"
Hmmm... try it again. I get it
Incoming from Greg Folkert:
>
> Hey, I have found some thing. Rather than repost. I'll share where I
> posted it.
>
> http://z.iwethey.org/forums/render/content/show?contentid=169321
"Zope Error"
--
Any technology distinguishable from magic is insufficiently advanced.
(*) http:/
On Sun, 2004-08-15 at 19:15 +0200, Thomas Hungenberg wrote:
> Hello,
>
> sshd included with Debian/sarge logs connection attempts with illegal
> usernames this way:
>
> sshd[xxx]: Illegal user from xxx.xxx.xxx.xxx
> sshd[xxx]: Failed unknown for illegal user from xxx.xxx.xxx.xxx port
> x s
On Sun, Aug 15, 2004 at 07:15:18PM +0200, Thomas Hungenberg wrote:
> Hello,
[snip]
> Is there a way to make the sshd included with Debian/woody to also log
> the usernames an attacker tried to connect with?
Set "LogLevel VERBOSE" in /etc/ssh/sshd_config
--
William Aoki KD7YAF [EMAIL PROTECTED]
Hello,
sshd included with Debian/sarge logs connection attempts with illegal
usernames this way:
sshd[xxx]: Illegal user from xxx.xxx.xxx.xxx
sshd[xxx]: Failed unknown for illegal user from xxx.xxx.xxx.xxx port x
ssh2
However, the older sshd version from Debian/woody by default only logs
11 matches
Mail list logo
