SSH session logging

matth · September 22, 2022, 3:29pm

Hello,

Is there a way to enable more verbose SSH session logging that displays the SSH authentication and encryption algorithms were negotiated for the session?

For example, something like the ssh -vvv output.

debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: curve25519-sha256
debug1: kex: host key algorithm: ssh-ed25519
debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: compression: none
debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: compression: none
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ssh-ed25519 SHA256: …

Best Regards,
Matt

cohult · September 24, 2022, 5:42am

The built-in SSH daemon does not log that info. You would have to use an external SSH server such as OpenSSH if you want the SSH daemon to log that info.
Best regards