04-11-2006
In MY /etc/syslog.conf, I have something telling the 'AUTH' messages where to 'go':
auth.info <tab><tab><tab> ifdef(`LOGHOST', /var/log/authlog, @loghost)
If I do NOT have the machine 'loghost' defined on my network, AND I want all my 'logs' written locally,
I add an "alias" for 'THIS' machine as loghost in /etc/hosts.
If you have an entry in /etc/hosts for your machine that looks like this:
10.232.232.123 myhost.mydomain.com myhost
Then ADD 'loghost' to make the entry look like:
10.232.232.123 myhost.mydomain.com myhost loghost
THAT way, all your logs will stay on 'this' machine.
This should also work for you. Make SURE the 'whitespace' between columns are TABS, not 'spaces'.
There should be *NO* spaces between columns in /etc/syslog.conf.
Also, I do a:
touch /var/log/authlog
To make sure the file is there for syslog to write to, although I am NOT sure if this is necessary.
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
i just downloaded and installed succesfully openssh server, and am running it on netbsd 1.5, i can not login with anyuser, i enabled root login just to see what happens and i can login as root, but no other user, i checked my config and most things are default, whats going on? has any one else had... (2 Replies)
Discussion started by: norsk hedensk
2 Replies
2. AIX
need some clarification:
if i ssh to the server & i restart the sshd process, did my connection gone?
one more thing, there are a few sshd processes in aix, how do i restart it all to read new config? using HUP?
thanks in advance! (2 Replies)
Discussion started by: ashterix
2 Replies
3. AIX
Friends,
I made the installation of the ssh in the it conspires,
I configured in the ssh_config the following
parameters..
SyslogFacility AUTH
LogLevel INFO
that should generate sshd.log in the /var/log.... more no this generating.
Somebody could help myself in... (0 Replies)
Discussion started by: sandba
0 Replies
4. UNIX for Dummies Questions & Answers
Can someone tell me the difference between the (2) listed below:
oracle pts/1 ip1 May1 7:11 9:11
oracle sshd ip1 May1 7:11 8:22
How do I read the above information, the fact that the row for pts/1 has a longer time duration than the row for sshd. Why is the... (2 Replies)
Discussion started by: banyan
2 Replies
5. AIX
I installed OpenSSH on AIX 5.1 but when I try to start it, it says:
bash-2.05a# /usr/sbin/sshd
bash-2.05a#
bash-2.05a# tail /var/adm/syslog.out
Jan 8 11:52:22 xyz sshd: fatal: Cannot bind any address.
:confused: (31 Replies)
Discussion started by: untamed
31 Replies
6. Solaris
Hi,
I was able to putty a few server (Solaris 10) of mine using hostname, but when i change to ip address, it shows
login as: root
Using keyboard-interactive authentication.
Password:
Access denied
I change PermitRootLogin to yes. I tried to do a sshd restart, however
... (6 Replies)
Discussion started by: beginningDBA
6 Replies
7. Solaris
I have shamelessly tried all the possible ways to see if my /var/adm/loginlog logs user access entries for ssh but nothing has worked for me so far..:confused:
for telnet login its working fine.
Adding auth.info in syslog.conf works but i dont want that output.
Is there any way to edit... (2 Replies)
Discussion started by: ningy
2 Replies
8. Solaris
Hi
I wanted to convert my pam libraries to 64 bit. so recently compiled my pam_banner and pam_wheel to 64 bit.
I got the following error...
sshd: dlsym failed pam_sm_authenticate:error ld.so.1 : sshd fatal: pam_sm_authenticate: can't find symbol
thnaks (8 Replies)
Discussion started by: chinchao
8 Replies
9. UNIX for Advanced & Expert Users
Hi there
I was wondering, is there anyway I can change the appearance of sshd logs output in /var/log/sshderr.log and /var/log/sshd.log. Right now, its showing as such:
sshd: error: PAM: Authentication failure for it.sysadm from cijXXX.jp.mitsubishi-motors.com
sshd: Accepted... (10 Replies)
Discussion started by: hedkandi
10 Replies
10. Red Hat
Hi,
Do you know what cause the error message ?
Nov 19 13:42:19 cfsasnd02 sshd: pam_env(sshd:setcred): non-alphanumeric key '-- /etc/environment' in /etc/environment', ignoring
Nov 19 13:42:20 cfsasnd02 sshd: pam_env(sshd:setcred): non-alphanumeric key '-- /etc/environment' in... (0 Replies)
Discussion started by: xitrum
0 Replies
LEARN ABOUT DEBIAN
logger
LOGGER(1) User Commands LOGGER(1)
NAME
logger -- a shell command interface to the syslog(3) system log module
SYNOPSIS
logger [-dhisV] [-f file] [-n server] [-P port] [-p pri] [-t tag] [-u socket] [message]
DESCRIPTION
logger makes entries in the system log. It provides a shell command interface to the syslog(3) system log module.
Options:
-d, --udp
Use datagram (UDP) instead of the default stream connection (TCP).
-i, --id
Log the process ID of the logger process with each line.
-f, --file file
Log the contents of the specified file. This option cannot be combined with a command-line message.
-h, --help
Display a help text and exit.
-n, --server server
Write to the specified remote syslog server using UDP instead of to the builtin syslog routines.
-P, --port port
Use the specified UDP port. The default port number is 514.
-p, --priority priority
Enter the message into the log with the specified priority. The priority may be specified numerically or as a facility.level pair.
For example, -p local3.info logs the message as informational in the local3 facility. The default is user.notice.
-s, --stderr
Output the message to standard error as well as to the system log.
-t, --tag tag
Mark every line to be logged with the specified tag.
-u, --socket socket
Write to the specified socket instead of to the builtin syslog routines.
-V, --version
Display version information and exit.
-- End the argument list. This is to allow the message to start with a hyphen (-).
message Write the message to log; if not specified, and the -f flag is not provided, standard input is logged.
The logger utility exits 0 on success, and >0 if an error occurs.
Valid facility names are: auth, authpriv (for security information of a sensitive nature), cron, daemon, ftp, kern (can't be generated from
user process), lpr, mail, news, security (deprecated synonym for auth), syslog, user, uucp, and local0 to local7, inclusive.
Valid level names are: alert, crit, debug, emerg, err, error (deprecated synonym for err), info, notice, panic (deprecated synonym for
emerg), warning, warn (deprecated synonym for warning). For the priority order and intended purposes of these levels, see syslog(3).
EXAMPLES
logger System rebooted
logger -p local0.notice -t HOSTIDM -f /dev/idmc
logger -n loghost.example.com System rebooted
SEE ALSO
syslog(3), syslogd(8)
STANDARDS
The logger command is expected to be IEEE Std 1003.2 (``POSIX.2'') compatible.
AVAILABILITY
The logger command is part of the util-linux package and is available from ftp://ftp.kernel.org/pub/linux/utils/util-linux/.
util-linux August 2011 util-linux