[CentOS] CentOS 5 sshd does not log IP address of reverse mapping failure
Tilman Schmidt
t.schmidt at phoenixsoftware.de
Fri Mar 8 16:32:34 UTC 2013
Am 08.03.2013 15:50, schrieb Reindl Harald:
> Am 08.03.2013 15:01, schrieb Tilman Schmidt:
>> Am 07.03.2013 19:49, schrieb Les Mikesell:
[...]
>>> Does it work if you set
>>> UseDNS no
>>> in /etc/ssh/sshd_config?
>>
>> Not really. That seems to remove the "reverse mapping checking failed"
>> messages (assuming there were the usual number of such attempts after
>> I set that option), but IP addresses for failed logins to existing
>> users are never logged. The log contains just:
>>
>> sshd[27912]: Disconnecting: Too many authentication failures for root
>
> not true,
How do you know? I saw no logon from you on the machine I tested this
on. :-)
> i have "UseDNS no" on ANY machine since a long time
> and /var/log/secure contains ip-addresses as also logwatch
For failed login attempts to existing usernames? Can you share a log
entry? That would give me hope that it's just a configuration issue.
Thanks,
Tilman
--
Tilman Schmidt
Abteilungsleiter Technik
----------------------------------------------------------------
Phoenix Software GmbH Tel. +49 228 97199 0
Geschäftsführer: W. Grießl Fax +49 228 97199 99
Adolf-Hombitzer-Str. 12 www.phoenixsoftware.de
53227 Bonn, Germany Amtsgericht Bonn HRB 2934
----------------------------------------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 261 bytes
Desc: OpenPGP digital signature
URL: <http://lists.centos.org/pipermail/centos/attachments/20130308/fbe0f560/attachment.sig>
More information about the CentOS
mailing list