openssh unix dev - Mar 2016 - request: add IP address to a log message to allow blocking

Hello,

I'm seeing a lot of messages like this:

    fatal: Read from socket failed: Connection reset by peer [preauth]

I presume they are the result of someone trying a brute-force attack of some
kind, and would like to ban the attacker, but cannot, because the IP address is
missing.

If you haven't already, an you please add the IP address to this message,
and
any similar messages?  I'm using version 6.7p1.

thanks,
Rob

On Tue, 29 Mar 2016, IMAP List Administration wrote:
> Hello,
> 
> I'm seeing a lot of messages like this:
> 
>     fatal: Read from socket failed: Connection reset by peer [preauth]
> 
> I presume they are the result of someone trying a brute-force attack of
some
> kind, and would like to ban the attacker, but cannot, because the IP
address is
> missing.
> 
> If you haven't already, an you please add the IP address to this
message, and
> any similar messages?  I'm using version 6.7p1.
I actually added that recently. It will be in openssh-7.3, due in a
couple of months.

-d

On Tue 2016-03-29 18:10:00 -0400, Damien Miller wrote:
> On Tue, 29 Mar 2016, IMAP List Administration wrote:
>> If you haven't already, an you please add the IP address to this
message, and
>> any similar messages?  I'm using version 6.7p1.
>
> I actually added that recently. It will be in openssh-7.3, due in a
> couple of months.
Will it be configurable?  There are situations where people actively
don't want to have any IP addresses logged for legal reasons, and
ideally it would be easy to get diagnostics without risks of IP
addresses being written to log storage.

          --dkg