Do not audit partial auth failures

This commit is contained in:
Jakub Jelen 2018-01-22 12:22:17 +01:00
parent 6996c6f503
commit c45ece5fe8

View File

@ -814,6 +814,15 @@ diff -up openssh-7.6p1/auth2-pubkey.c.audit openssh-7.6p1/auth2-pubkey.c
diff -up openssh-7.6p1/auth.c.audit openssh-7.6p1/auth.c
--- openssh-7.6p1/auth.c.audit 2017-10-04 17:18:32.746504598 +0200
+++ openssh-7.6p1/auth.c 2017-10-04 17:18:32.835505053 +0200
@@ -360,7 +360,7 @@ auth_log(Authctxt *authctxt, int authent
# endif
#endif
#ifdef SSH_AUDIT_EVENTS
- if (authenticated == 0 && !authctxt->postponed)
+ if (authenticated == 0 && !authctxt->postponed && !partial)
audit_event(audit_classify_auth(method));
#endif
}
@@ -599,9 +599,6 @@ getpwnamallow(const char *user)
record_failed_login(user,
auth_get_canonical_hostname(ssh, options.use_dns), "ssh");