Date: Wed, 13 Feb 2002 20:01:19 +0100 From: Cliff Sarginson <cliff@raggedclown.net> To: freebsd-questions@freebsd.org Subject: Re: SSH security logs Message-ID: <20020213190119.GC1009@raggedclown.net> In-Reply-To: <19813106446.20020213185314@cybertron.tmfweb.nl> References: <4.2.0.58.20020211030913.00984700@pop.netzero.net> <19813106446.20020213185314@cybertron.tmfweb.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Feb 13, 2002 at 06:53:14PM +0100, Alex wrote: > Hello Lord, > > Monday, February 11, 2002, 9:12:25 AM, you wrote: > > LR> Ok, super stupid question. Where are the logs for the SSH daemon? I'm > LR> trying to find out login success's and failures, as well as source IP's > LR> from which the attempt to connect and login happened, and once I lock down > LR> the SSH daemon to only accept clients who have the correct private key, I > LR> want to also know about successful and failed ssh connect's (aka those that > LR> had the key and connected successfully, and those that didn't.) with source > LR> IP's as well. Thanks again. > If you read "man 8 sshd" it explains the log possibilities with sshd. By default it logs messages as type "AUTH". You need to adjust /etc/ssh/sshd_config to reflect what you want and then make appropriate changes to /etc/syslog.conf to reflect where you want to see the messages (man 5 syslog.conf). -- Regards Cliff To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020213190119.GC1009>