Accessing log files with lnav via ssh
-
I'm trying to view the files of my pfsense from another pc with lnav. Unfortunately this is not working, in the log files I can see that sshguard is blocking it with the following message:
Attack from "192.168.100.10" on service SSH with danger 2I can:
- ssh into pfsense with my key
- scp (with key) to and from pfsense
How can I get sshguard not to block my lnav requests? Thanks in advance for any help!
-
That log only indicates an authentication failure on SSH not that sshguard is actually blocking anything yet. It will start blocking after repeated auth failures.
The Inav client is using a bad key.
Steve
-
@stephenw10 said in Accessing log files with lnav via ssh:
The Inav client is using a bad key.
Thanks for the hint, I made some progress ;-) :
AFAIK it is not possible to specify a ssh key in lnav directly. I was able to pass the key by adding the host to my .ssh/config file and now I can access pfsense via lnav, viewing of log files still doesn't work though.
I guess this is a lnav issue now?! no files are opened, only in the lnav debug log I can see
reporting error: pfsense: -- /bin/sh: bash: not foundIn the pfsense log I see repetitive:
Accepted publickey for admin from 192.168.100.10 port 43816 ssh2: RSA SHA256:xxx Received disconnect from 192.168.100.10 port 43816:11: disconnected by user Disconnected from user admin 192.168.100.10 port 43816 -
pfSense does not include bash by default. It uses sh or tcsh. You can install bash if you can't change the ssh command Inav is sending. However it's not a gui package so it may be lost across an upgrade.
-
Thanks again!
I was able to change the config of lnav, so that it uses sh instead of bash. Now it is working!
