Hello, I'm running pure-ftpd on a centos 5.3 machine. I'm encountering a situation where i need to get log reports of user logins and logouts and tracking the files got, atempted anonymous user logins those should preferably go in to a firewall rule block list, and atempted hack ins, same thing as anonymous user logins. Can anyone suggest a package for creating and then emailing say 3 to 4 times a day reports of activity? Thanks. Dave.
Hello, I'm running pure-ftpd on a centos 5.3 machine. I'm encountering a situation where i need to get log reports of user logins and logouts and tracking the files got, atempted anonymous user logins those should preferably go in to a firewall rule block list, and atempted hack ins, same thing as anonymous user logins. Can anyone suggest a package for creating and then emailing say 3 to 4 times a day reports of activity?
logwatch
mark
Hi, Thanks. I've installed logwatch. It definitely looks like what i'm looking for. I've got a question on customizations, point of confusion actually. In /usr/share/logwatch/default.conf are the default configs, nothing is in /usr/share/logwatch/dist.conf, and nothing in /etc/logwatch in terms of configs. Do i make changes to /usr/share/logwatch/default.conf/* files or copy them to their equivalent name place in /etc/logwatch and edit making changes to those? Thanks much. Dave
-----Original Message----- From: centos-bounces@centos.org [mailto:centos-bounces@centos.org] On Behalf Of m.roth@5-cent.us Sent: Friday, September 18, 2009 9:13 AM To: CentOS mailing list Subject: Re: [CentOS] getting ftp log reports
Hello, I'm running pure-ftpd on a centos 5.3 machine. I'm encountering a situation where i need to get log reports of user logins and logouts and tracking the files got, atempted anonymous user logins those should preferably go in to a firewall rule block list, and atempted hack ins, same thing as anonymous user logins. Can anyone suggest a package for creating and then emailing say 3 to 4 times a day reports of activity?
logwatch
mark
_______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Hi, Thanks. I've installed logwatch. It definitely looks like what i'm looking for. I've got a question on customizations, point of confusion actually. In /usr/share/logwatch/default.conf are the default configs, nothing is in /usr/share/logwatch/dist.conf, and nothing in /etc/logwatch in terms of configs. Do i make changes to /usr/share/logwatch/default.conf/* files or copy them to their equivalent name place in /etc/logwatch and edit making changes to those? Thanks much.
I actually don't know. They run logwatch here, and I just look at the emails.
Every hour. Every day. Every machine....
Anyway, looking through our configs, I see that what's in /etc/logwatch/conf/logwatch.conf just says "# Local configuration options go here (defaults are in /usr/share/logwatch/default.conf/logwatch.conf)". So I gather that if the defaults are fine, go with that; if you want something different, use the defaults as a guide, and put the local stuff in etc.
mark
-
Dave -
m.roth@5-cent.us