Martin SchrC6der <[EMAIL PROTECTED]> writes: > On 2005-09-23 00:05:14 -0700, Wolfgang S. Rupprecht wrote: >> appreciable added risk. The only loose end is that sshd doesn't >> currently log the RSA/DSA key that is used to gain access. Ideally it > > Hu? Try > LogLevel VERBOSE
Your eloquent reply aside, setting the loglevel to versbose doesn't add proper key accounting to the sshd login record. What it does is add yet more clutter to /var/log/authlog by emitting quite a few more lines per login. Sshd's logs seem more like debug printfs, scattered willy-nilly around the code. The information one would expect from a security program is never gathered in one spot and output in a single audit line to see who logged in as what user. -wolfgang