I have "PermitRootLogin no" in sshd_config to prevent logins as username
root. I also only allow specific usernames to log in, so I have AllowUsers set
in sshd_config.
When someone does attempt to login as root, I see this in /var/log/secure:
Apr 23 07:03:53 machinename sshd[29961]: User root from 122.36.2.10
not allowed because not listed in AllowUsers
and the corresponding entry in /var/log/denyhosts
2007-04-23 07:04:07,805 - denyhosts : ERROR regex pattern ( User (?P<user>.
*) not allowed because not listed in AllowUsers ) is missing 'host' group
... and the attacker goes unblocked and undetected by denyhosts.
Version-Release number of selected component (if applicable):
denyhosts-2.6-2.fc6
openssh-clients-4.3p2-19.fc6
openssh-4.3p2-19.fc6
openssh-server-4.3p2-19.fc6
openssh-askpass-4.3p2-19.fc6
Description of problem:
I have "PermitRootLogin no" in sshd_config to prevent logins as username
root. I also only allow specific usernames to log in, so I have AllowUsers set
in sshd_config.
When someone does attempt to login as root, I see this in /var/log/secure:
Apr 23 07:03:53 machinename sshd[29961]: User root from 122.36.2.10
not allowed because not listed in AllowUsers
and the corresponding entry in /var/log/denyhosts
2007-04-23 07:04:07,805 - denyhosts : ERROR regex pattern ( User (?P<user>.
*) not allowed because not listed in AllowUsers ) is missing 'host' group
... and the attacker goes unblocked and undetected by denyhosts.
Version-Release number of selected component (if applicable): clients- 4.3p2-19. fc6 4.3p2-19. fc6 server- 4.3p2-19. fc6 askpass- 4.3p2-19. fc6
denyhosts-2.6-2.fc6
openssh-
openssh-
openssh-
openssh-