Logging passwords of SSH attacks - Page 3

01-18-2009, 11:58 AM

2009/1/18 Florian Mickler <florian@mickler.org>:
>> > people
>> > often confuse which password they have to enter where, and thus
>> > valid passwords would wander into the logs for malicous people to
>> > collect and use at other sites.
>>
>> auth.log is only readable to sysadmins.
>>
> <sarcasm> oh what a wonderful world </sarcasm>
>
> The only way to prevent misuse of such information is to _not_ _log_
> _it_.
>

Naturally, I would not log invalid password attempts on a machine to
which valid users log into remotely. But if I am being attacked, then
I would like to log that info. Maybe they know my password and not my
username? Or an older password? It is entirely possible, as I change
the username each time I install but not always the password.

> If you really need to satisfy your curiosity hack the sources or look
> at 'john' or something like that.
>

Thanks, I will google "john".

--
Dotan Cohen

http://what-is-what.com
http://gibberish.co.il

×-×‘-×’-×“-×”-×•-×–-×—-×˜-×™-×š-×›-×œ-×-×ž-×Ÿ-×*-×¡-×¢-×£-×¤-×¥-×¦-×§-×¨-×©-×ª
Ø§-Ø¨-Øª-Ø«-Ø¬-Ø*-Ø®-Ø¯-Ø°-Ø±-Ø²-Ø³-Ø´-Øµ-Ø¶-Ø·-Ø¸-Ø¹-Øº-Ù-Ù‚-Ùƒ-Ù„-Ù…-Ù†-Ù‡*-Ùˆ-ÙŠ
Ð-Ð‘-Ð’-Ð“-Ð”-Ð•-Ð-Ð–-Ð—-Ð˜-Ð™-Ðš-Ð›-Ðœ-Ð-Ðž-ÐŸ-Ð*-Ð¡-Ð¢-Ð£-Ð¤-Ð¥-Ð¦-Ð§-Ð¨-Ð©-Ðª-Ð«-Ð¬-Ð*-Ð®-Ð¯
Ð°-Ð±-Ð²-Ð³-Ð´-Ðµ-Ñ‘-Ð¶-Ð·-Ð¸-Ð¹-Ðº-Ð»-Ð¼-Ð½-Ð¾-Ð¿-Ñ€-Ñ-Ñ‚-Ñƒ-Ñ„-Ñ…-Ñ†-Ñ‡-Ñˆ-Ñ‰-ÑŠ-Ñ‹-ÑŒ-Ñ-ÑŽ-Ñ
Ã¤-Ã¶-Ã¼-ÃŸ-Ã„-Ã–-Ãœ