-
Bug
-
Resolution: Unresolved
-
Normal
-
None
-
rhel-9.4.z
-
None
-
None
-
Low
-
sst_security_crypto
-
ssg_security
-
None
-
False
-
-
Yes
-
None
-
None
-
None
-
Known Issue
-
-
Done
-
-
All
-
None
What were you trying to do that didn't work?
"Timeout before authentication for $IP port $PORT" is no longer logged; this might be notable because Fail2Ban uses it in its mdre-ddos regex and will no longer ban clients by their IPs for attempting this specific kind of attack.
Please provide the package NVR for which bug is seen:
openssh-8.7p1-38.el9_4.1
How reproducible:
Always
Steps to reproduce
- Try to connect and when the system asks for a password, leave it to timeout.
Expected results
The message should be logged.
Actual results
The message is not logged.