Bug dans OpenSSH 5.5 — message d'erreur alarmiste

Authentication tried for root with correct key but not from a permitted host (host=XXX, ip=YYY).

L'information présente sur cette page était une erreur de ma part : OVH n'est pas en cause, c'est effectivement un bug dans OpenSSH. Toutes mes excuses à OVH.

Le bug est présent dans OpenSSH 5.5, fourni avec Debian Squeeze. Il est corrigé depuis OpenSSH 5.6: sshd(8): fix logspam when key options (from="..." especially) deny non-matching keys.

• Bug d'origine : #1765: Error message if key not first in authorized_keys file.
• Bug rapporté par OVH : #2027: SSH generates misleading errors when using public key authentication.
• Ticket OVH : FS#7060 — Debian: log d'authentification SSH incorrect.

The information here was wrong, OVH has nothing to do with this warning: this was indeed a SSH bug. I hereby apology for the mistake.

This bug occurs in OpenSSH 5.5, available in Debian Squeeze. It is fixed since OpenSSH 5.6: sshd(8): fix logspam when key options (from="..." especially) deny non-matching keys.

• Original bug report: #1765: Error message if key not first in authorized_keys file.
• Bug report by OVH: #2027: SSH generates misleading errors when using public key authentication.
• OVH ticket: FS#7060 — Debian: log d'authentification SSH incorrect.

Sorry again for the noise (even if some say: better safe than sorry). Never believe what you read on the Internet, check by yourself, be careful.