Bug 166379
Summary: | ssh does not generate audit messages when ssh session closes | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | rob <rob.myers> |
Component: | openssh | Assignee: | Tomas Mraz <tmraz> |
Status: | CLOSED UPSTREAM | QA Contact: | Brian Brock <bbrock> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 4 | CC: | sgrubb |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | i386 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2005-08-22 08:36:21 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 216689 |
Description
rob
2005-08-19 21:51:35 UTC
This problem is probably caused by the session cleanup being handled by the child and it not having enough privileges to write to the audit netlink socket. The results are different when logging in as a normal user and when logging in as root. When root, you get the CRED_DISP message, but not when you are a common user. This would require many changes in sshd's handling of PAM calls and it must be done upstream first. See http://bugzilla.mindrot.org/show_bug.cgi?id=926 |