Dave Harrison wrote:
My current solution is to run a second sshd on another port and have
that be the externally accessible sshd (and configure it to only allow
public key connections). However the way sshd logs, I can't work out
what was logged by which daemon.
Just give the external sshd a distinguishable name. When sshd calls
log_init it uses argv[0] so the name will show up in syslog:
# ln -s /usr/sbin/sshd /usr/sbin/extsshd
# /usr/sbin/extsshd -p 222
# grep extsshd /var/log/authlog
[...] extsshd[15393]: Server listening on :: port 222.
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
