Skip to content

Built-in SSH Server does not log anything on authentication failure #13094

New issue
New issue
Closed
Closed
Built-in SSH Server does not log anything on authentication failure#13094
Labels
topic/securitySomething leaks user information or is otherwise vulnerable. Should be fixed!type/enhancementAn improvement of existing functionality
@elesiuta

Description

@elesiuta
elesiuta
opened on Oct 10, 2020
  • Gitea version (or commit ref): 1.12.5
  • Git version: 2.17.1
  • Operating system: Ubuntu 20.04
  • Database (use [x]):
    • PostgreSQL
    • MySQL
    • MSSQL
    • SQLite
  • Can you reproduce the bug at https://try.gitea.io:
    • Yes (provide example URL)
    • No
    • Not relevant
  • Log gist:

Description

My log level is set to trace, failed attempts (Permission denied (publickey)) do not appear in gitea.log (I also enabled and checked access.log)
This seems to be a regression of #5765 introduced in #7250
Authenticated connections are still logged but the IP address is not (which was also logged before this regression)

Metadata

Metadata

Assignees

No one assigned

    Labels

    topic/securitySomething leaks user information or is otherwise vulnerable. Should be fixed!type/enhancementAn improvement of existing functionality

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions