It is possible for ~user/.ssh/authorized_keys to have multiple entries. It would be quite helpful if openssh would enhance the log to indicate WHICH key was accepted, not just that a key was accepted. In other words, would you please modify: $TIMESTAMP $HOST sshd[$PID]: Accepted publickey for $USER from $IP port $PORT $PROTOCOL to add an indication (e.g., the comment field) as to which key was used: $TIMESTAMP $HOST sshd[$PID]: Accepted publickey ($COMMENT) for $USER from $IP port $PORT $PROTOCOL --- Noel
On Tue, May 11, 2004 at 04:03:55PM -0400, Noel J. Bergman wrote:> In other words, would you please modify: > > $TIMESTAMP $HOST sshd[$PID]: Accepted publickey for $USER from $IP port > $PORT $PROTOCOL > > to add an indication (e.g., the comment field) as to which key was used: > > $TIMESTAMP $HOST sshd[$PID]: Accepted publickey ($COMMENT) for $USER > from $IP port $PORT $PROTOCOLThis has come up before but been shot down with the rationale that arbitrary user input ($COMMENT) probably shouldn't be sent to the system logger, IIRC. //Peter
Maybe Matching Threads
- Loggin of authorized keys
- Requiring certificate signature and an authorized key to authenticate
- Help with CA Certificates for user authentication?
- AuthorizedKeysFile with default value prevents Public/Private key authentication
- happy new years ssh key problem :)