From owner-freebsd-security Fri Oct 11 12:21:35 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DA6E737B401 for ; Fri, 11 Oct 2002 12:21:32 -0700 (PDT) Received: from carbon.berkeley.netdot.net (carbon.berkeley.netdot.net [216.27.190.205]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5AA3643E97 for ; Fri, 11 Oct 2002 12:21:32 -0700 (PDT) (envelope-from nick@netdot.net) Received: by carbon.berkeley.netdot.net (Postfix, from userid 101) id CB398F810; Fri, 11 Oct 2002 12:21:31 -0700 (PDT) Date: Fri, 11 Oct 2002 12:21:31 -0700 From: Nicholas Esborn To: freebsd-security@freebsd.org Subject: Possible to get publickey fingerprint in sshd log messages? Message-ID: <20021011192131.GB18130@carbon.berkeley.netdot.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.5.1i Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello, Is there any possibility to identify which public key was accepted in sshd's syslog messages? Right now, it spits out something like: Oct 11 12:06:52 barbados sshd[14112]: Accepted publickey for jimbo from 10.0.0.167 port 2411 ssh2 The problem is that I can't tell which public key was used to gain entry. Would a public key fingerprint in this message weaken security in some way I'm missing? Thanks, -nick -- Nicholas Esborn Unix Systems Administrator Berkeley, California To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message