Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to disable cron emails, but only for logrotate only not for other logs?
Top Forums Shell Programming and Scripting How to disable cron emails, but only for logrotate only not for other logs? Post 302940682 by kenshinhimura on Wednesday 8th of April 2015 09:46:16 AM
Old 04-08-2015
How to disable cron emails, but only for logrotate only not for other logs?
Guys, is there a script or command?

how to disable cron emails, but only for logrotate only not for other logs
 

10 More Discussions You Might Find Interesting

1. AIX

AIX and cron logs filtering ?: /etc/cronlog.conf, /var/adm/cron/log

Hi, I can use 'crontabs –e' and do all the scheduling I like. However I would like to auto send myself just the cronjobs logs that fail. That is to say the PIDs that fail and the related lines with those PID’s only. (Not the full set of logs) Has anyone done this work? Or does an AIX 5.3 tool... (0 Replies)
Discussion started by: Keith Johnson
0 Replies

2. UNIX for Dummies Questions & Answers

Delete Old Spam Emails Custom Cron

Hey Guys, I've done some research however I got stuck. My goal is to create a cron job that runs every hour and goes through all web accounts on my server and deletes spam emails that are older than 3 days. This is what I came up with: 0 * * * * find /home/*/mail/*/*/.spam/cur/* -type f... (0 Replies)
Discussion started by: plxkarl
0 Replies

3. UNIX for Advanced & Expert Users

How to disable application level logs in Unix?

Hi, I'm working in an application and the related Java code and the envrionment is in Unix server. We are generating the log messages using loggers of Java.util.log . But, the logs are not getting generated in the log files. We feel that the people who developed the system might have done some... (6 Replies)
Discussion started by: kelangovan
6 Replies

4. UNIX for Advanced & Expert Users

cron/logrotate chicken and egg problem

I have run into a problem where about a dozen machines, all the same x86_64 2.6.12 GNU/Linux. For some reason these machines will fill up their /var partition (10G), because their logs never get rotated... Unfortunately, there is no error message from logrotate (would be in /var/log/messages) and... (8 Replies)
Discussion started by: jjinno
8 Replies

5. UNIX for Dummies Questions & Answers

disable cron job

Hi all, I am not the unix person but have to disable cron job on the server I typed crontab -l to list the job there is one job then i tried crontab -e and got one result 100 ( i do not know what that means) how can i disable the job to run i want to disable the job. Please show me... (3 Replies)
Discussion started by: patdev
3 Replies

6. Solaris

Disable all the logs in Solaris

Hi Is there anyway to disable all logs/logging (lastlog, sulog, messages etc.) in Solaris 9&10? I know this is not recommended but i just want to know if this is possible. TIA Reddy (8 Replies)
Discussion started by: reddyr
8 Replies

7. SuSE

Which logs to logrotate?

Hi all We've had new servers coming in and one of the requirement was to keep logs for up to 8 months. I know logrotate can do the job, but by default (on Suse Enterprise10, 11) we have these logs in /etc/logrotate.d dir as default logs which are rotated: -rw-r--r-- 1 root root 140 Jul... (0 Replies)
Discussion started by: hedkandi
0 Replies

8. UNIX for Dummies Questions & Answers

logrotate and cron.daily/weekly

Hi guys, I've got two separate logrotates I'd like to run, one for Tomcat and one for Apache, but I'd like to run the Tomcat one daily and the Apache one weekly. Now, the logrotate itself is working fine, but although I have 'daily' in Tomcat, and 'weekly' in the Apache one, the latter is... (2 Replies)
Discussion started by: jimbob01
2 Replies

9. Debian

Logrotate truncated my log files to 0 bytes and no logs are written

Hi, Yesterday I installed and configured logrotate on my Debian machine. I was expecting this to run at 06:25 in the morning and it actually did. All my old logs were compressed and zipped but the new logs were all with size equal to 0 bytes. Processes, while still running ok, they were not... (2 Replies)
Discussion started by: pmatsinopoulos
2 Replies

10. UNIX and Linux Applications

Logrotate with catalina.out "daily compressed file is overwriting the logs"

Hi Everyone, We are trying to do a logrotate for "catalina.out" daily, So have used the "copytruncate" option in the logrotate configuration but ended up seeing there was a 0kb file touched with "catalina.out" and the other file with the current date(compressed) file created and seems the log is... (2 Replies)
Discussion started by: thiyagoo
2 Replies

LEARN ABOUT CENTOS

logrotate_selinux

logrotate_selinux(8)					     SELinux Policy logrotate					      logrotate_selinux(8)

NAME

       logrotate_selinux - Security Enhanced Linux Policy for the logrotate processes

DESCRIPTION

       Security-Enhanced Linux secures the logrotate processes via flexible mandatory access control.

       The  logrotate  processes  execute with the logrotate_t SELinux type. You can check if you have these processes running by executing the ps
       command with the -Z qualifier.

       For example:

       ps -eZ | grep logrotate_t

ENTRYPOINTS

       The logrotate_t SELinux type can be entered via the logrotate_exec_t file type.

       The default entrypoint paths for the logrotate_t domain are the following:

       /etc/cron.(daily|weekly)/sysklogd, /usr/sbin/logrotate

PROCESS TYPES

       SELinux defines process types (domains) for each process running on the system

       You can see the context of a process using the -Z option to ps

       Policy governs the access confined processes have to files.  SELinux logrotate policy is very flexible allowing users to setup their logro-
       tate processes in as secure a method as possible.

       The following process types are defined for logrotate:

       logrotate_t, logrotate_mail_t

       Note:  semanage permissive -a logrotate_t can be used to make the process type logrotate_t permissive. SELinux does not deny access to per-
       missive process types, but the AVC (SELinux denials) messages are still generated.

BOOLEANS

       SELinux policy is customizable based on least access required.  logrotate policy is extremely flexible and has several booleans that  allow
       you to manipulate the policy and run logrotate with the tightest access possible.

       If you want to allow logrotate to manage nfs files, you must turn on the logrotate_use_nfs boolean. Disabled by default.

       setsebool -P logrotate_use_nfs 1

       If  you want to allow users to resolve user passwd entries directly from ldap rather then using a sssd server, you must turn on the authlo-
       gin_nsswitch_use_ldap boolean. Disabled by default.

       setsebool -P authlogin_nsswitch_use_ldap 1

       If you want to deny any process from ptracing or debugging any other processes, you must  turn  on  the	deny_ptrace  boolean.  Enabled	by
       default.

       setsebool -P deny_ptrace 1

       If you want to allow all domains to use other domains file descriptors, you must turn on the domain_fd_use boolean. Enabled by default.

       setsebool -P domain_fd_use 1

       If  you	want  to  allow  all domains to have the kernel load modules, you must turn on the domain_kernel_load_modules boolean. Disabled by
       default.

       setsebool -P domain_kernel_load_modules 1

       If you want to allow all domains to execute in fips_mode, you must turn on the fips_mode boolean. Enabled by default.

       setsebool -P fips_mode 1

       If you want to enable reading of urandom for all domains, you must turn on the global_ssp boolean. Disabled by default.

       setsebool -P global_ssp 1

       If you want to allow confined applications to run with kerberos, you must turn on the kerberos_enabled boolean. Enabled by default.

       setsebool -P kerberos_enabled 1

       If you want to allow system to run with NIS, you must turn on the nis_enabled boolean. Disabled by default.

       setsebool -P nis_enabled 1

       If you want to allow confined applications to use nscd shared memory, you must turn on the nscd_use_shm boolean. Disabled by default.

       setsebool -P nscd_use_shm 1

       If you want to support NFS home directories, you must turn on the use_nfs_home_dirs boolean. Disabled by default.

       setsebool -P use_nfs_home_dirs 1

       If you want to support SAMBA home directories, you must turn on the use_samba_home_dirs boolean. Disabled by default.

       setsebool -P use_samba_home_dirs 1

NSSWITCH DOMAIN

       If you want to allow users to resolve user passwd entries directly from ldap rather then using a sssd server for  the  logrotate_t,  logro-
       tate_mail_t, you must turn on the authlogin_nsswitch_use_ldap boolean.

       setsebool -P authlogin_nsswitch_use_ldap 1

       If  you	want  to  allow  confined  applications  to  run  with	kerberos  for the logrotate_t, logrotate_mail_t, you must turn on the ker-
       beros_enabled boolean.

       setsebool -P kerberos_enabled 1

MANAGED FILES

       The SELinux process type logrotate_t can manage files labeled with the following file types.  The paths listed are the  default	paths  for
       these file types.  Note the processes UID still need to have DAC permissions.

       abrt_var_cache_t

	    /var/tmp/abrt(/.*)?
	    /var/cache/abrt(/.*)?
	    /var/spool/abrt(/.*)?
	    /var/spool/debug(/.*)?
	    /var/cache/abrt-di(/.*)?
	    /var/spool/rhsm/debug(/.*)?

       logfile

	    all log files

       logrotate_lock_t

       logrotate_tmp_t

       logrotate_var_lib_t

	    /var/lib/logrotate.status

       named_cache_t

	    /var/named/data(/.*)?
	    /var/lib/unbound(/.*)?
	    /var/named/slaves(/.*)?
	    /var/named/dynamic(/.*)?
	    /var/named/chroot/var/tmp(/.*)?
	    /var/named/chroot/var/named/data(/.*)?
	    /var/named/chroot/var/named/slaves(/.*)?
	    /var/named/chroot/var/named/dynamic(/.*)?

       openshift_var_lib_t

	    /var/lib/openshift(/.*)?
	    /var/lib/stickshift(/.*)?
	    /var/lib/containers(/.*)?

       systemd_passwd_var_run_t

	    /var/run/systemd/ask-password(/.*)?
	    /var/run/systemd/ask-password-block(/.*)?

       var_spool_t

	    /var/spool(/.*)?

FILE CONTEXTS

       SELinux requires files to have an extended attribute to define the file type.

       You can see the context of a file using the -Z option to ls

       Policy  governs the access confined processes have to these files.  SELinux logrotate policy is very flexible allowing users to setup their
       logrotate processes in as secure a method as possible.

       STANDARD FILE CONTEXT

       SELinux defines the file context types for the logrotate, if you wanted to store files with these types in a diffent  paths,  you  need	to
       execute the semanage command to sepecify alternate labeling and then use restorecon to put the labels on disk.

       semanage fcontext -a -t logrotate_exec_t '/srv/logrotate/content(/.*)?'
       restorecon -R -v /srv/mylogrotate_content

       Note: SELinux often uses regular expressions to specify labels that match multiple files.

       The following file types are defined for logrotate:

       logrotate_exec_t

       - Set files with the logrotate_exec_t type, if you want to transition an executable to the logrotate_t domain.

       Paths:
	    /etc/cron.(daily|weekly)/sysklogd, /usr/sbin/logrotate

       logrotate_lock_t

       - Set files with the logrotate_lock_t type, if you want to treat the files as logrotate lock data, stored under the /var/lock directory

       logrotate_mail_tmp_t

       - Set files with the logrotate_mail_tmp_t type, if you want to store logrotate mail temporary files in the /tmp directories.

       logrotate_tmp_t

       - Set files with the logrotate_tmp_t type, if you want to store logrotate temporary files in the /tmp directories.

       logrotate_var_lib_t

       - Set files with the logrotate_var_lib_t type, if you want to store the logrotate files under the /var/lib directory.

       Note:  File context can be temporarily modified with the chcon command.	If you want to permanently change the file context you need to use
       the semanage fcontext command.  This will modify the SELinux labeling database.	You will need to use restorecon to apply the labels.

COMMANDS

       semanage fcontext can also be used to manipulate default file context mappings.

       semanage permissive can also be used to manipulate whether or not a process type is permissive.

       semanage module can also be used to enable/disable/install/remove policy modules.

       semanage boolean can also be used to manipulate the booleans

       system-config-selinux is a GUI tool available to customize SELinux policy settings.

AUTHOR

       This manual page was auto-generated using sepolicy manpage .

SEE ALSO

       selinux(8),  logrotate(8),  semanage(8),  restorecon(8),  chcon(1),   sepolicy(8)   ,   setsebool(8),   logrotate_mail_selinux(8),   logro-
       tate_mail_selinux(8)

logrotate							     14-06-10						      logrotate_selinux(8)
All times are GMT -4. The time now is 05:08 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy