Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

How can I log all or any ssh logins and have it send me an email

Status
Not open for further replies.
jayvo

jayvo

MIS
May 24, 2001
27
US
I have a Freebsd machine running ssh and I want to be able to log all ssh logins and have that log sent to me via email. I am particularly interested in having invalid su logins sent to me. Please help. Thanks



Jayvo
 
Sort by date Sort by votes
Jayvo,

When an su command is issued, it is logged in /var/adm/messages and I believe ssh is the same.

You could write a cron job that searchs the /var/adm/message file for certain patterns. You could also write wrappers for ssh and su.


-Tony
 
Upvote 0 Downvote
Hi,

use tcp_wrapper application to wrap extra security around sshd. And run sshd using inetd instead. tcp_wrapper use /etc/hosts.allow and /etc/hosts.deny files for configuration. Google get more information.

dbase77
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

ziggy6
  • Locked
  • Question
Help using awk or some kind of Tool in Unix to Read a file, cut fields and write to a file
Replies
2
Views
388
mikrom
mikrom
mduddytel
  • Locked
  • Question
Unix Root inbox - how to clear
Replies
0
Views
308
mduddytel
mduddytel
ziggy6
  • Locked
  • Question
Trying to Install Openssl 1.1.1. on SCO 5.0.7
Replies
0
Views
336
ziggy6
ziggy6
mduddytel
  • Locked
  • Question
Permissions issue? 1
Replies
8
Views
369
SamBones
SamBones
LoPath
  • Locked
  • Question
Debian Linux "stretch" DHCP issues
Replies
1
Views
292
LoPath
LoPath

Part and Inventory Search

Sponsor

Back
Top