From owner-freebsd-questions@FreeBSD.ORG Mon Sep 16 18:16:21 2013 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id 188F39A1 for ; Mon, 16 Sep 2013 18:16:21 +0000 (UTC) (envelope-from matthew@FreeBSD.org) Received: from smtp.infracaninophile.co.uk (smtp6.infracaninophile.co.uk [IPv6:2001:8b0:151:1:3cd3:cd67:fafa:3d78]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 871E52213 for ; Mon, 16 Sep 2013 18:16:20 +0000 (UTC) Received: from seedling.black-earth.co.uk (seedling.black-earth.co.uk [81.2.117.99]) (authenticated bits=0) by smtp.infracaninophile.co.uk (8.14.7/8.14.7) with ESMTP id r8GIGGHL078843 (version=TLSv1/SSLv3 cipher=DHE-RSA-CAMELLIA256-SHA bits=256 verify=NO) for ; Mon, 16 Sep 2013 19:16:16 +0100 (BST) (envelope-from matthew@FreeBSD.org) DKIM-Filter: OpenDKIM Filter v2.8.3 smtp.infracaninophile.co.uk r8GIGGHL078843 Authentication-Results: smtp.infracaninophile.co.uk/r8GIGGHL078843; dkim=none reason="no signature"; dkim-adsp=none (unprotected policy) Message-ID: <52374AEF.3090209@FreeBSD.org> Date: Mon, 16 Sep 2013 19:16:15 +0100 From: Matthew Seaman User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:17.0) Gecko/20130801 Thunderbird/17.0.8 MIME-Version: 1.0 To: freebsd-questions@freebsd.org Subject: Re: how to log sshd access in a single file References: In-Reply-To: X-Enigmail-Version: 1.5.2 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="h9ruPpiqMMqAt56NJCGXXVCTJvdgLblMl" X-Virus-Scanned: clamav-milter 0.97.8 at lucid-nonsense.infracaninophile.co.uk X-Virus-Status: Clean X-Spam-Status: No, score=-3.2 required=5.0 tests=ALL_TRUSTED,AWL,BAYES_00 autolearn=ham version=3.3.2 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on lucid-nonsense.infracaninophile.co.uk X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 16 Sep 2013 18:16:21 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --h9ruPpiqMMqAt56NJCGXXVCTJvdgLblMl Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable On 16/09/2013 14:36, aurikus grande wrote: > I try to add a line in /etc/hosts.allow which would allow and log all > attempts using SSH (sshd). Actually, by default all logins via ssh are already logged to /var/log/auth.log Verb. Sap. tcpwrappers are mostly a lot less useful than they appear to be. Generally there's a much better way to do whatever you want already in the FreeBSD base system, or failing that in a readily available port, which will be more effective, less load on the system and that doesn't require you to run everything out of inetd or recompile it specially with tcpwrappers support. Cheers, Matthew --=20 Dr Matthew J Seaman MA, D.Phil. PGP: http://www.infracaninophile.co.uk/pgpkey --h9ruPpiqMMqAt56NJCGXXVCTJvdgLblMl Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.16 (Darwin) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iEYEARECAAYFAlI3SvAACgkQ8Mjk52CukIzCRACfVxIVD1Db2RcxPXARECx+lSAC QhQAn3gJB6KGfXlo3jPXHqxDPi8QwEu7 =IM0e -----END PGP SIGNATURE----- --h9ruPpiqMMqAt56NJCGXXVCTJvdgLblMl--