LinuxQuestions.org
Visit the LQ Articles and Editorials section
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices

Reply
 
LinkBack Search this Thread
Old 02-03-2009, 08:14 AM   #1
rwadkins
LQ Newbie
 
Registered: Feb 2009
Posts: 5

Rep: Reputation: 0
SSHD logging and pubkey certs


Is it possible to have SSHD log identifying information indicating which pubkey was presented to login to an individual user account?

Secure log only seems to show that the user was logged in, but not by whom and the ip addresses aren't telling, enough. I'd like to know which entry in the authorized_keys file permitted the login.
 
Old 02-03-2009, 10:32 AM   #2
anomie
Senior Member
 
Registered: Nov 2004
Location: Texas
Distribution: RHEL, Scientific Linux, Debian, Fedora, FreeBSD
Posts: 3,925
Blog Entries: 5

Rep: Reputation: Disabled
I'm not sure, but see the manpages for sshd_config(5). You will want to experiment with the LogLevel directive.
 
Old 02-03-2009, 10:40 AM   #3
jstephens84
Senior Member
 
Registered: Sep 2004
Distribution: (Home)Opensolaris, Ubuntu, CentOS, (Work - AIX, HP-UX, Red Hat)
Posts: 2,043

Rep: Reputation: 83
Quote:
Originally Posted by rwadkins View Post
Is it possible to have SSHD log identifying information indicating which pubkey was presented to login to an individual user account?

Secure log only seems to show that the user was logged in, but not by whom and the ip addresses aren't telling, enough. I'd like to know which entry in the authorized_keys file permitted the login.
I thought ssh keys are generated on a per user bases. check for a .ssh file in your user directory.
 
Old 02-04-2009, 09:13 AM   #4
rwadkins
LQ Newbie
 
Registered: Feb 2009
Posts: 5

Original Poster
Rep: Reputation: 0
Quote:
Originally Posted by jstephens84 View Post
I thought ssh keys are generated on a per user bases. check for a .ssh file in your user directory.
They are generated on a per user basis, but multiple keys can be added to the .ssh/authorized_keys file. Allowing multiple certificates to be used for authentication to a specific user account. I know that the user account logged in, but I don't know which key in the authorized_keys file allowed the log in.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
NO PUBKEY for Lenny dauphinfay Linux - Software 4 08-24-2008 10:41 AM
Starting sshd: /etc/init.d/sshd: line 113: /usr/sbin/sshd: Permission denied sumanc Linux - Server 5 03-28-2008 04:59 AM
no pubkey okkiepepernoot Linux - Newbie 1 10-23-2006 08:39 AM
Autoetenthications and pubkey problem giraf Debian 5 01-30-2006 03:35 AM
Unix certs Linux certs and jobs bru Linux - Certification 1 11-18-2004 10:41 AM


All times are GMT -5. The time now is 12:37 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration