I don't agree that this is not a bug; as Michael pointed out there are log file processors like fail2ban which can't tell the difference between an auth failure from this and an auth failure from a guess.
It could possibly be worked around in the logging daemon or in every package that consumes the logs, but wouldn't it make more sense to just be able to not log it in the first place unless all available auth modules fail? -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libpam-ldap in Ubuntu. https://bugs.launchpad.net/bugs/562388 Title: Authentication failure on successful login when using LDAP authentication To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpam-ldap/+bug/562388/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs