Software :: Secure Way To Handle Logwatch Reports / Rather Than Using Email?
Oct 13, 2009Is their a more secure way to handle logwatch reports, rather than using email?
View 5 Replies
ADVERTISEMENT
Red Hat / Fedora :: Logwatch Reports Are Nearly Empty
Apr 10, 2010I've installed Logwatch 7.3.6 via the rpm on my CentOS 5.4 server. The issue is I'm getting basically empty reports from logwatch. The only two sections which have any information are samba and diskspace.
The only default options in the config file I've modified are: Code: print = No output = html I'm suspecting the issue has to do with the fact that the as-logged host name doesn't match my current host name. However, I've tried manually changing this on a few entries so they match but they didn't show up in the report. According to the config file, the default for option HostLimit is "No" -- so Logwatch should not care what hostname it sees in a log file, right?
CentOS 5 :: Logwatch Not Sending Reports?
Aug 31, 2010When I installed Cent before I got my logwatch messages sent to me. for somreason this new server I built I am not getting them. can mail off the server and there is no mail in the Q or in root. I also put in a .forward file in my root to mail to my external account and it works fine. I get mail from fail2ban and denyhosts but not the logwatch.Thoughts on what I could be missing? I check the link and the files are all there. I changed the config file to give me a High level of detail. Thats about it. If I use the command line for logwatch it sends mail fine. logwatch --detail high --logfile messages --mailto yourname@domain.com
View 6 Replies View RelatedGeneral :: Logwatch Configure To Use SSH Tunnel Into Mail Server To Send Log Reports
Feb 28, 2011We have following setup,
1. Webserver (Centos 5.5)
2. Mail server (Centos 5.5)
We have configured autossh successfully to create/manage the ssh tunnel into mail server in order to dump all emails to localhost port.
To auto start autossh in boot time we have included following into /etc/rc.d/rc.local,
Quote:
So whenever our web application wants to send out emails it dump all emails to localhost:33465 port, easy piecy, all are working great
Now we have a requirement that logwatch reports should get delivered via the same ssh tunnel rather than installing postfix and configuring as a relay.
In logwatch is there a way to achieve that?
General :: Command Based Email Client To Send Email Through Secure Smtp?
Jul 26, 2010In my Windows environment, I use email client such as Microsoft Outlook to connect to our email server to send email with the following configuration:
Incoming server (POP3): 995 - (requires with SSL)
Outgoing server (SMTP): 465 - (use encrypted connection SSL)
[code]....
And the mail server requires user ID login and password.how do I setup a text command based email client in my Linux (Centos 5.1) to send out email through the existing email server above, which is in another machine? The email client has to be text command based because I need to use command line to send notification email from anothar application installed in my Linux (Centos 5.1) Since the email client will only be used to send email notification, I don't require setting up of an email server in my linux.
Server :: Can't Get Logwatch To Email A Daily Summary?
Oct 12, 2010I have a squid proxy server (which I am very new too) which all traffic from my office goes through. The proxy itself is working fine, but I can not get logwatch to email me a daily summary. logrotate seems to be throwing an error:
# logrotate /etc/logrotate.conf
error: squid:1 duplicate log entry for /var/log/squid/access.log
My /etc/logrotate.d/squid file is below... My access logs are in /logs/squid not in /var/log/squid.
[Code]...
Red Hat :: Servers Don't Send Out A Daily Logwatch Email?
May 9, 2010Gidday, for some reason some of my RHEL servers don't send out a daily logwatch email (most do, but two don't) - and sadly I have no idea how to troubleshoot this.
Can anybody give some help/hints as to where/how I may troubleshoot this. I should add that these servers can/do send emails (I have some cronjobs that fire off emails upon completion of their jobs, so I know its not a sendmail config issue).
CentOS 5 :: Would Like A Proftpd Log To Trigger Logwatch To Send Email?
May 8, 2010I have CentOS 5.4 running my file server. I finally got proftpd to work. I configured logwatch to send me email on a daily basis however I would like to be sent an email immediately when the proftpd log file changes. Is this possible?
View 5 Replies View RelatedSecurity :: Configure Syslogd To Email Reports?
Mar 13, 2011I'm going through the linux hardening checklist, and the only bit I'm having trouble with is how to configure syslogd to email daily reports to my email. my mta is postfix
How do I do this? Or should I ask... where is the HOWTO?
Software :: Secure Email Web Portal
Mar 9, 2011Does anyone know of an open source secure email portal that I can install. How this would work:You open a web page and create a email and once you send the message it would notify the recipient that there is a message waiting for them. They would then log into the portal and view that message.
View 2 Replies View RelatedCentOS 5 Server :: 5.4 - Setting Up Sendmail To Do Secure Email Transmissions
Nov 27, 2009I'm confused about the sendmail/ssl combination. so confused, i'm not even sure what i'm confused about :) I want to have email sent from our server to the rest of the world in a 'secure' manner. Just dl'ed and installed CentOS5.4: Linux rh5 2.6.18-164.el5xen #1 SMP Thu Sep 3 04:03:03 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux the /etc/mail/sendmail.mc has the instructions
[Code]...
Ubuntu Servers :: Setting Up Secure IMAP Email Server That Is Able To Be Accessed From Outside Network?
Jun 9, 2011Does anyone know how to go about setting up a secure IMAP email server that is able to be accessed from outside the network? Similar to how you can access your google email account from your computer using Thunderbird.
View 3 Replies View RelatedDebian :: Tool For Squid Reports (not SARG) - Generate Less Amount Of Files - Optimal Is To Save Reports To The Database
May 9, 2011I got the following task from my boss. I have to find out if there is some alternative tool for create reports from Squid except SARG. Now, we use SARG, but my boss told to me, that the main problem of SARG is, that SARG generate huge amount files, which cause problems during migration our servers. He told to me the following condition for change of current tool (SARG):
* standard package of Debian
* generate less amount of files, optimal is to save reports to the database
So I would like to ask you if you know about some tool (I can not find some by google)... and the best would be if you told to me some practical experiences.
Security :: Ways To Secure Sendmail Or Secure Alternatives To Send Mail
Dec 1, 2010I'm an Oracle DBA and started working for my current employer about 4 months ago. This past weekend an alert re: FS space brought my attention to /var/spool/clientmqueue (full of mail re: cron jobs) and the fact that sendmail is not running on our Linux servers.I'm told that the IT security team deemed sendmail too vulnerable so we don't run it.Aside from FS filling up and missing notification of issues with crontab entries, I'm concerned that we may be missing notification of potential issues. In other Unix/Linux environments I've seen emails from the print daemon when it experienced problems with specific jobs.
Are there other Linux facilities aside from cron and lpd that use email to advise the users of possible issues? Are there ways to secure sendmail or secure alternatives to sendmail? My primary need/desire is to make sure that emails regarding issues on the server get to the appropriate users. Secondary goal would be to have the ability to use mailx to send mail out. There is No need/desire to receive mail from outside.
Security :: How To Configure Logwatch
Mar 4, 2010how to configure Logwatch? where can I find its config file? I never configure it but I received email everyday from Logwatch@mydomain.com..
View 1 Replies View RelatedSoftware :: Does Logwatch Run Automatically?
Jun 16, 2009Does logwatch run automatically, or do I need to make a cron entry for it? How can I reset logwatch? When I run logwatch from the command line twice, it sends the same email twice.
View 4 Replies View RelatedUbuntu Servers :: Logwatch On 10.04 Dhcp?
Jun 16, 2010i was wondering if there is anybody out there who has logwatch running and configured to just grab dhcp leases only
View 3 Replies View RelatedGeneral :: E-mail Only Received From Logwatch
Aug 11, 2009I am receving emails from logwatch but when I setup my own mail script using mutt, the script succeeds but no email is received.Any ideas what the difference is between the two mail methods?
View 14 Replies View RelatedGeneral :: What Is (1xx 0, 2xx 8, 3xx 0, 4xx 3, 5xx 0) In Logwatch Httpd Section
Nov 27, 2010In this part of logwatch:
Code:
--------------------- httpd Begin ------------------------
0.12 MB transferred in 11 responses (1xx 0, 2xx 8, 3xx 0, 4xx 3, 5xx 0)
[code]....
Server :: Can't Understand Logwatch Error
May 23, 2011This problem is occurring on Red Hat EL 5 WS. However, I have two CentOS 5 systems, with similar configuration to RH EL 5, where this problem does not occur.
I am getting this error:
Can't exec "sendmail": No such file or directory at ./0logwatch line 1018, <TESTFILE> line 1.
Can't execute sendmail -t: No such file or directory
General :: Install Logwatch As A Security Precaution?
Sep 11, 2010I was advised by a fellow forum owner to install logwatch as a security precaution. Our forum runs on a dedicated server. CentOS 5.5. I ran "yum install logwatch" and got the following:
Code:
Examining logwatch-7.3.6-1.noarch.rpm: logwatch-7.3.6-1.noarch
Marking logwatch-7.3.6-1.noarch.rpm to be installed
Resolving Dependencies
--> Running transaction check
---> Package logwatch.noarch 0:7.3.6-1 set to be updated
--> Finished Dependency Resolution
[Code]...
General :: Logwatch Warning: Kernel Errors
Oct 22, 2010I'm having some issues on a server running redhat for specific application and lately it has been for some reason kicking out some services. I just checked the Logwatch mail on the root user and here is one of the main error:
[code]...
Server :: Getting Logwatch Working With Shorewall Logs?
Sep 9, 2010How to get logwatch working with shorewall logs. I tried fwlogwatch but could not get that working.
View 1 Replies View RelatedSoftware :: Logwatch Not Sending Emails - No Mail
Jun 8, 2010I'm trying to get logwatch to email me. I think my logwatch.conf file is okay. I have postfix installed. The mailer as far as I can tell is set correctly ("usr/bin/mail"). When I run logwatch - I get "no mail for aubrey"
Heres my logwatch.conf file:
Code:
linux-qwkb:/home/aubrey # edit /usr/share/logwatch/default.conf/logwatch.conf
########################################################
# This was written and is maintained by:
# Kirk Bauer <kirk@kaybee.org>
#
# Please send all comments, suggestions, bug reports,
# etc, to kirk@kaybee.org.
#
######################################################## .....
Red Hat :: Logwatch Kernal Error Report RHEL 6
May 19, 2011Logwatch has been showing me there is kernal errors present on my server.Below is the full report from logwatch, please let me know if there is anything I should be aware of and fix.
View 1 Replies View RelatedUbuntu Servers :: Make Logwatch (Postfix) Less Chatty?
Mar 12, 2010Does anyone know the trick to getting Logwatch to make its entries a little less chatty and leave out the "Detailed" section of the Postfix report? I can't seem to tone it down and the daily reports I get include every recipient, host, etc., which is too much info to make a summary report useful.The first portion I get looks like this:
****** Summary *************************************************
9 *Warning: Pre-queue content-filter connection overload
2 SASL authentication failed
432 Miscellaneous warnings[code]....
This would be fine for a quick review that I do first thing. However,the "Detailed" portion that follows is over 2,800 lines long!
General :: IP Tables Logwatch - Ports 28960 And 28964?
Nov 27, 2010Everyday logwatch sends me the following information from IPTables and it seems odd, can anyone tell me are these entries odd, they all seem to be to two ports 28960 and 28964
[Code]....
Security :: Centos 5.5 / Rkhunter Result In Logwatch Mail
Apr 20, 2011I have a server, running Centos 5.5. It runs daily rkhunter and logwatch. From both I get a daily mail.
I have a desktop computer, running Fedora 13 (almost 14...). It runs also a daily rkhunter and logwatch. But I get ONE mail from logwatch, which contains the result of rkhunter.
On the server, I want also only mail from logwatch, containing the rkhunter results. But so far, no luck.
How can I get the rkhunter results in the logwatch mail on my Centos server?
Security :: Logwatch Reported Possible Exploits On Gateway Machine?
Mar 15, 2011I have set logwatch to report daily the logs, somehow since last week i get below message. A total of 1 possible successful probes were detected (the following URLs contain strings that match one or more of a listing of strings that indicate a possible exploit):
/cgi-bin/blocked.cgi?clientaddr=192.168.1.108&clientname=&clientident=&clientgroup=limitedaccess&targetclass= untrusted&url=http://adfarm.mediaplex.com/ad/fm/9608-84171-8772-2?
[code]...
Software :: Logwatch Has Identical Entries For Disk Space?
Apr 14, 2010I have logwatch 5.2.2 setup for 51 RHEL servers (mostly RHEL 4.8) and they all forward to a central server for a single email to be sent each day. This part works great. However, the "Disk Space" section is identical for every one of the entries. Obviously, this cannot be true for every server. What do I need to adjust such that real disk space data is being reported (or at least reported for the servers that are running low)?
The other entries like sendmail, pam_unix, and sshd data are working great and unique for each server.