Do not audit partial auth failures
This commit is contained in:
parent
6996c6f503
commit
c45ece5fe8
@ -814,6 +814,15 @@ diff -up openssh-7.6p1/auth2-pubkey.c.audit openssh-7.6p1/auth2-pubkey.c
|
||||
diff -up openssh-7.6p1/auth.c.audit openssh-7.6p1/auth.c
|
||||
--- openssh-7.6p1/auth.c.audit 2017-10-04 17:18:32.746504598 +0200
|
||||
+++ openssh-7.6p1/auth.c 2017-10-04 17:18:32.835505053 +0200
|
||||
@@ -360,7 +360,7 @@ auth_log(Authctxt *authctxt, int authent
|
||||
# endif
|
||||
#endif
|
||||
#ifdef SSH_AUDIT_EVENTS
|
||||
- if (authenticated == 0 && !authctxt->postponed)
|
||||
+ if (authenticated == 0 && !authctxt->postponed && !partial)
|
||||
audit_event(audit_classify_auth(method));
|
||||
#endif
|
||||
}
|
||||
@@ -599,9 +599,6 @@ getpwnamallow(const char *user)
|
||||
record_failed_login(user,
|
||||
auth_get_canonical_hostname(ssh, options.use_dns), "ssh");
|
||||
|
Loading…
Reference in New Issue
Block a user