Bug 2064

Summary:

Enable logging of client_user at INFO priority rather than DEBUG2

Product:

Portable OpenSSH

Reporter:

Eugene Pivovarov <e5pivovarov>

Component:

sshd

Assignee:

Damien Miller <djm>

Status:

CLOSED FIXED

Severity:

enhancement

CC:

djm, dtucker

Priority:

Version:

5.8p2

Hardware:

All

OS:

All

Bug Depends on:

Bug Blocks:

2076

Attachments:

Description	Flags
Log key, client user and wire-specified client host for hostbased auth	dtucker: ok+

Description Eugene Pivovarov 2013-01-25 15:11:42 AEDT

One of the important features of hostbased authentication is that it controls access from the specified client users. When such control is desired, it is truly beneficial to supplement it with corresponding information in the log. In other words, sshd log should get a message that says which client user from which hostname and IP address logins as which local user. In v5.8p2 such a message only comes from auth_rhosts2_raw() in auth-rhosts.c and the message is at syslog priority DEBUG2. Thus, it is not possible to get details about client user without running sshd with log level as high as DEBUG2. It would be highly desirable if this message or a similar message reporting client_user had priority INFO.

Comment 1 Darren Tucker 2013-06-05 11:14:53 AEST

Damien, this might be doable with the recent auth_log changes?

Comment 2 Damien Miller 2013-06-05 11:44:29 AEST

Created attachment 2295 [details]
Log key, client user and wire-specified client host for hostbased auth

Yes, though we should log the key too. This patch extends the recent pubkey_auth_info() to allow logging of additional information besides the key, and uses it to log the hostbased client user and client host (as it appears in the userauth packet).

Comment 3 Damien Miller 2013-06-21 10:35:06 AEST

committed - this will be in openssh-6.3

Comment 4 Damien Miller 2021-04-23 15:03:34 AEST

closing resolved bugs as of 8.6p1 release