We have a Windows system making many sftp connections to a Linux system in a short period of time. It is 3rd party software that I am being told can't be changed to use key exchange. The result is this is perceived as an attack and we start denying the host. Is there a way to ignore the "authentication failure" if it is followed by "Accepted password" message?
-- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.
