Bug 909 - AllowUsers denied access does not log IP address
Summary: AllowUsers denied access does not log IP address
Status: CLOSED FIXED
Alias: None
Product: Portable OpenSSH
Classification: Unclassified
Component: sshd (show other bugs)
Version: -current
Hardware: All All
: P2 normal
Assignee: OpenSSH Bugzilla mailing list
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2004-08-05 12:44 AEST by Stephen Woodbridge
Modified: 2006-10-07 11:36 AEST (History)
0 users

See Also:

Attachments
add source address/hostname to log messages. (2.27 KB, patch)
2005-01-20 23:22 AEDT, Darren Tucker 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Stephen Woodbridge 2004-08-05 12:44:01 AEST 
log messages do not include orginating IP address for messages like:

Aug  2 21:09:48 maps sshd[4468]: User root not allowed because not listed in
AllowUsers

Using version:
OpenSSH_3.4p1 Debian 1:3.4p1-1.woody.3, SSH protocols 1.5/2.0, OpenSSL 0x0090603f

This is a serious security omission, because you can not track, report and/or
block hosts that are trying to access your system. I realize that only allowing
specific hosts would be a better security alternative, but this is not always an
alternative when I am travelling and need remote access to my system.
Comment 1 Darren Tucker 2005-01-20 23:22:56 AEDT 
Created attachment 779 [details]
add source address/hostname to log messages.

Please try this patch (against OpenBSD but will apply to 3.9p1 with fuzz).

The log messages look like:
User dtucker from host.some.net not allowed because listed in DenyUsers
Comment 2 Darren Tucker 2005-01-22 19:27:42 AEDT 
Patch has been applied to OpenBSD and will make it into Portable's snaps
sometime soon.  It will be in the next major release.  Thanks for the report.
Comment 3 Darren Tucker 2006-10-07 11:36:40 AEST 
Change all RESOLVED bug to CLOSED with the exception of the ones fixed post-4.4.