bluethundr
Reputation: 1345
cryptic message in secure logs
I'm seeing this message turning up frequently in my secure logs.
pam_succeed_if(sshd:auth): requirement "uid >= 1000" not met by user "root"
However I have no idea what this means. Can someone please explain?
Upvotes: 0
Views: 125
Answers (1)
viraptor
Reputation: 34205
It comes from pam, not from sshd directly. Basically someone tries to login to the box you're looking at, sends login name "root", but pam is configured to disallow any user below uid 1000 from connecting. (root normally uses uid 0)
Unless you really want to connect as root yourself, this is a good thing.
Upvotes: 1
Related Questions
- Mac OS Sierra log show missing SSH source IP
- What are the parts ECDSA entry in the 'known_hosts' file?
- how to customize ssh log?
- Fedora / GitLab SSH Denied, Help Understanding Verbose Logs
- Unix - Suppress informatory messages
- Warning every time login remote server
- Weak Debian SSH Keys Python Script Cryptic auth.log
- SSH haywire with login attempts - Heartbleed?
- Strange openssh-server log in /var/log/auth.log
- SSH login warning message on a server with 2 DNS names