log illegal user here for missing privsep case (ssh2).

this is executed in the monitor. ok markus@
author: stevesk <stevesk@openbsd.org> 2002-09-20 18:41:29 +0000
committer: stevesk <stevesk@openbsd.org> 2002-09-20 18:41:29 +0000
commit: 6e5522e7477a536d04eca39fa3107145c08687c4 (patch)
tree: 8379213042d63e435188290b214d5f4a7d09cd05 /usr.bin/ssh/auth.c
parent: Sync with reality, and fix a few errors. (diff)
download: wireguard-openbsd-6e5522e7477a536d04eca39fa3107145c08687c4.tar.xz
wireguard-openbsd-6e5522e7477a536d04eca39fa3107145c08687c4.zip
1 files changed, 7 insertions, 2 deletions
diff --git a/usr.bin/ssh/auth.c b/usr.bin/ssh/auth.c
index 53bf745f320..e0d98dbfbba 100644
--- a/usr.bin/ssh/auth.c
+++ b/usr.bin/ssh/auth.c
@@ -23,7 +23,7 @@
  */
 
 #include "includes.h"
-RCSID("$OpenBSD: auth.c,v 1.44 2002/08/08 23:54:52 stevesk Exp $");
+RCSID("$OpenBSD: auth.c,v 1.45 2002/09/20 18:41:29 stevesk Exp $");
 
 #include <libgen.h>
 
@@ -407,7 +407,12 @@ getpwnamallow(const char *user)
 	struct passwd *pw;
 
 	pw = getpwnam(user);
-	if (pw == NULL || !allowed_user(pw))
+	if (pw == NULL) {
+		log("Illegal user %.100s from %.100s",
+		    user, get_remote_ipaddr());
+		return (NULL);
+	}
+	if (!allowed_user(pw))
 		return (NULL);
 #ifdef HAVE_LOGIN_CAP
 	if ((lc = login_getclass(pw->pw_class)) == NULL) {
author	stevesk <stevesk@openbsd.org>	2002-09-20 18:41:29 +0000
committer	stevesk <stevesk@openbsd.org>	2002-09-20 18:41:29 +0000
commit	6e5522e7477a536d04eca39fa3107145c08687c4 (patch)
tree	8379213042d63e435188290b214d5f4a7d09cd05 /usr.bin/ssh/auth.c
parent	Sync with reality, and fix a few errors. (diff)
download	wireguard-openbsd-6e5522e7477a536d04eca39fa3107145c08687c4.tar.xz wireguard-openbsd-6e5522e7477a536d04eca39fa3107145c08687c4.zip