-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I updated a server with the openssh errata for valhalla today and now when I
log in I see this in the logs:
sshd(pam_unix)[14785]: authentication failure; logname= uid=0 euid=0 tty=NODEVssh
ruser= rhost=xxxxxxxxx user=xxxxxxxxxx
sshd(pam_unix)[14785]: session opened for user xxxxxxxxxx by (uid=0)
I am using PubkeyAuthentication and have PasswordAuthentication disabled on
this box. I get logged in fine, but I wonder why that first line with
"authentication failure" is there and if it should be. I run logcheck on
the server and unless I'd tell it to ignore lines like that, I'll see this
for every time someone logs in via ssh. I'd hesitate to have logcheck
ignore it since then I might miss auth failures that I do want to know about
(like someone trying to hammer their way in).
Anyone shed any light on this?
- --
Todd OpenPGP -> KeyID: 0xD654075A | URL: www.pobox.com/~tmz/pgp
============================================================================
Mistakes seldom prove fatal unless repeated.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: When crypto is outlawed bayl bhgynjf jvyy unir cevinpl.
iD8DBQE/J0u0uv+09NZUB1oRAm7kAJ9cEKR/DzIqOcMJA5h8Dlj1aSWa9QCfdOod
ipOSdwSNhvYCKxMlPbSUb+k=
=U7wh
-----END PGP SIGNATURE-----
--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://www.redhat.com/mailman/listinfo/redhat-list
