From d61c655626e74e65dba34e4e9d5aa6616cc72f93 Mon Sep 17 00:00:00 2001
From: Colin Watson <cjwatson@debian.org>
Date: Sun, 25 May 2008 23:24:33 +0000
Subject: Log IP addresses of hosts attempting to use blacklisted keys (closes:
 #481721).

---
 auth2-hostbased.c | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

(limited to 'auth2-hostbased.c')

diff --git a/auth2-hostbased.c b/auth2-hostbased.c
index 8e3d5f530..d7009eeb0 100644
--- a/auth2-hostbased.c
+++ b/auth2-hostbased.c
@@ -150,11 +150,13 @@ hostbased_key_allowed(struct passwd *pw, const char *cuser, char *chost,
 	if (blacklisted_key(key) == 1) {
 		fp = key_fingerprint(key, SSH_FP_MD5, SSH_FP_HEX);
 		if (options.permit_blacklisted_keys)
-			logit("Public key %s blacklisted (see "
-			    "ssh-vulnkey(1)); continuing anyway", fp);
+			logit("Public key %s from %s blacklisted (see "
+			    "ssh-vulnkey(1)); continuing anyway",
+			    fp, get_remote_ipaddr());
 		else
-			logit("Public key %s blacklisted (see "
-			    "ssh-vulnkey(1))", fp);
+			logit("Public key %s from %s blacklisted (see "
+			    "ssh-vulnkey(1))",
+			    fp, get_remote_ipaddr());
 		xfree(fp);
 		if (!options.permit_blacklisted_keys)
 			return 0;
-- 
cgit v1.2.3