[jira] [Commented] (SSHD-543) Consider logging client session setup with level 'debug'

Sun, 26 Jul 2015 07:19:33 -0700 

    [ 
https://issues.apache.org/jira/browse/SSHD-543?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14641973#comment-14641973
 ] 

Goldstein Lyor commented on SSHD-543:
-------------------------------------

The _AcceptAllServerKeyVerifier_ by default logs the acceptance as a warning 
since it is risky to accept server keys without checking them. As of the 
upcoming version 1.0.0.0 this is also the *default* verifier for the client if 
none supplied (at least until we add support for _known_hosts_). If the warning 
is a problem, one can always easily write a (silent) verifier that accepts all 
keys without checking.

> Consider logging client session setup with level 'debug'
> --------------------------------------------------------
>
>                 Key: SSHD-543
>                 URL: https://issues.apache.org/jira/browse/SSHD-543
>             Project: MINA SSHD
>          Issue Type: Improvement
>    Affects Versions: 0.12.0
>            Reporter: Martin Lichtin
>            Priority: Minor
>
> Following output in my view is too verbose for INFO level, should be DEBUG 
> instead:
> {noformat}
>  INFO  | [244ff839]-nio2-thread-3 | ClientSessionImpl                | 
> client.session.ClientSessionImpl   82 | 28 - org.apache.sshd.core - 0.12.0 | 
> Client session created
>  INFO  | tResourcePoller-inucdev1 | ClientSessionImpl                | 
> d.common.session.AbstractSession  485 | 28 - org.apache.sshd.core - 0.12.0 | 
> Start flagging packets as pending until key exchange is done
>  INFO  | [244ff839]-nio2-thread-3 | ClientSessionImpl                | 
> client.session.ClientSessionImpl  306 | 28 - org.apache.sshd.core - 0.12.0 | 
> Server version string: SSH-2.0-OpenSSH_5.3
>  INFO  | [244ff839]-nio2-thread-1 | ClientSessionImpl                | 
> d.common.session.AbstractSession 1114 | 28 - org.apache.sshd.core - 0.12.0 | 
> Kex: server->client aes128-ctr hmac-sha2-256 none
>  INFO  | [244ff839]-nio2-thread-1 | ClientSessionImpl                | 
> d.common.session.AbstractSession 1118 | 28 - org.apache.sshd.core - 0.12.0 | 
> Kex: client->server aes128-ctr hmac-sha2-256 none
>  WARN  | [244ff839]-nio2-thread-3 | AcceptAllServerKeyVerifier       | 
> ifier.AcceptAllServerKeyVerifier   45 | 28 - org.apache.sshd.core - 0.12.0 | 
> Server at inucdev1/172.22.55.1:22 presented unverified RSA key: 
> 02:2d:b0:12:26:d8:f2:51:aa:b8:fd:cf:69:ae:9d:e9
>  INFO  | [244ff839]-nio2-thread-3 | ClientSessionImpl                | 
> d.common.session.AbstractSession  373 | 28 - org.apache.sshd.core - 0.12.0 | 
> Dequeing pending packets
>  INFO  | [244ff839]-nio2-thread-1 | ClientUserAuthServiceNew         | 
> session.ClientUserAuthServiceNew  158 | 28 - org.apache.sshd.core - 0.12.0 | 
> Received SSH_MSG_USERAUTH_FAILURE
>  INFO  | [7ff20875]-nio2-thread-1 | ClientUserAuthServiceNew         | 
> session.ClientUserAuthServiceNew  145 | 28 - org.apache.sshd.core - 0.12.0 | 
> Received SSH_MSG_USERAUTH_SUCCESS
> {noformat}
> Also the WARN I'd say should not be a warning, as the code explicitly accepts 
> all server keys (AcceptAllServerKeyVerifier).



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to