Bug 3019

Summary: Journal log for incoming public key connect not helpful to know origin
Product: Portable OpenSSH Reporter: Dirk Stöcker <mindrot>
Component: sshdAssignee: Assigned to nobody <unassigned-bugs>
Status: CLOSED DUPLICATE    
Severity: enhancement CC: djm
Priority: P5    
Version: 7.9p1   
Hardware: Other   
OS: Linux   

Description Dirk Stöcker 2019-06-12 22:04:36 AEST 
In case of an incomming SSH connection the journal contains the following entry:

Accepted publickey for root from ... port ... ssh2: ECDSA SHA256:...

that is not helpful to find the real source.

in authorized_keys the entries look like

ecdsa-sha2-nistp256 ... user@domain

It would be very helpful, when the above log message also contains the "user@domain" part. That would make the log message much more helpful. If not, the output should instead of the SHA256 at least contain the same format as the authorized_keys entry has.
Comment 1 Damien Miller 2020-01-25 23:25:21 AEDT 

*** This bug has been marked as a duplicate of bug 1674 ***
Comment 2 Damien Miller 2021-04-23 14:53:13 AEST 
closing resolved bugs as of 8.6p1 release