#491550 sshd does not log login attempts using invalid public keys

Package:
openssh-server
Source:
openssh
Description:
secure shell (SSH) server, for secure access from remote machines
Submitter:
Richard Lewis
Date:
2010-01-04 12:33:25 UTC
Severity:
normal
#491550#5
Date:
2008-07-20 11:55:39 UTC
From:
To:
If atatckers attempt to log in using invalid users/passwords then sshd
adds a line to that effect to the log.  But if they are using public
keys that are not allowed then nothing is added.

This means that if a system is still allowing "vulnerable" keys then
an attacker can brute-force a login by trying all such in turn, and
the sysadmin will never notice this even if they review their logs.

Packages like fail2ban and denyhosts rely on the log file contianing
details of unsucessful login attempts.

#75043 is related.