breeze/openssh-portable
1
0
Fork 0
mirror of https://github.com/openssh/openssh-portable.git synced 2026-01-12 00:04:08 +08:00
Code Issues Packages Projects Releases Wiki Activity

Don't log audit messages with UNKNOWN hostname

Browse Source 
The `host` parameter to audit_log_acct_message() is documented as
follows:

      host - The hostname if known. If not available pass a NULL.

but we pass the string "UNKNOWN" in case we don't know the hostname.
Make sure we pass NULL instead.

This avoids having the audit system attempt to perform a DNS lookup on
the hostname "UNKNOWN", which tends to result in long delays when
attempting to login.
This commit is contained in:
Allison Karlitskaya
2025-09-03 20:07:55 +02:00
committed by Damien Miller
parent d343df4019
commit e5055ef26a
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
audit-linux.c
View File

@@ -51,6 +51,8 @@ linux_audit_record_event(int uid, const char *username, const char *hostname,
else
return 0; /* Must prevent login */
}
if (hostname != NULL && strcmp(hostname, "UNKNOWN") == 0)
hostname = NULL;
rc = audit_log_acct_message(audit_fd, AUDIT_USER_LOGIN,
NULL, "login", username ? username : "(unknown)",
username == NULL ? uid : -1, hostname, ip, ttyn, success);