Log IP addresses of hosts attempting to use blacklisted keys (closes:

#481721).
author: Colin Watson <cjwatson@debian.org> 2008-05-25 23:24:33 +0000
committer: Colin Watson <cjwatson@debian.org> 2008-05-25 23:24:33 +0000
commit: d61c655626e74e65dba34e4e9d5aa6616cc72f93 (patch)
tree: 039e0946fb19b073b13605142e5737875107dba9 /auth2-hostbased.c
parent: fe3af0a26497234bbae83a25fadf81a78cf2cf66 (diff)
1 files changed, 6 insertions, 4 deletions
diff --git a/auth2-hostbased.c b/auth2-hostbased.c
index 8e3d5f530..d7009eeb0 100644
--- a/auth2-hostbased.c
+++ b/auth2-hostbased.c
@@ -150,11 +150,13 @@ hostbased_key_allowed(struct passwd *pw, const char *cuser, char *chost,
        if (blacklisted_key(key) == 1) {
                fp = key_fingerprint(key, SSH_FP_MD5, SSH_FP_HEX);
                if (options.permit_blacklisted_keys)
-                        logit("Public key %s blacklisted (see "
+                        logit("Public key %s from %s blacklisted (see "
-                            "ssh-vulnkey(1)); continuing anyway", fp);
+                            "ssh-vulnkey(1)); continuing anyway",
+                            fp, get_remote_ipaddr());
                else
-                        logit("Public key %s blacklisted (see "
+                        logit("Public key %s from %s blacklisted (see "
-                            "ssh-vulnkey(1))", fp);
+                            "ssh-vulnkey(1))",
+                            fp, get_remote_ipaddr());
                xfree(fp);
                if (!options.permit_blacklisted_keys)
                        return 0;
author	Colin Watson <cjwatson@debian.org>	2008-05-25 23:24:33 +0000
committer	Colin Watson <cjwatson@debian.org>	2008-05-25 23:24:33 +0000
commit	d61c655626e74e65dba34e4e9d5aa6616cc72f93 (patch)
tree	039e0946fb19b073b13605142e5737875107dba9 /auth2-hostbased.c
parent	fe3af0a26497234bbae83a25fadf81a78cf2cf66 (diff)