08-16-2015
[solved] Logcheck sending emails everywhere
Hi,
I just recently installed logcheck running it at defaults. I don't have a /home/logcheck, even though the logcheck.conf MAILTO variable says "logcheck". Now I have a .forward in my regular home /home/awayand which gets an hourly report from logcheck but I have no clue how to turn that off. I don't want logcheck to use my /home/awayand/.forward file! Anyone know how I can troubleshoot where this configuration comes from?
Thanks!
Edit: turns out /etc/aliases had logcheck: root entry and root: awayand
Last edited by awayand; 08-16-2015 at 08:35 PM..
9 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hi ,
I need to have a unix process which is setup to read all incoming mail for some user and process the same.
How tough it is to code the same.Is there any way that we can
download some shell scripts for the same from some internet site
Kindly help. (2 Replies)
Discussion started by: xsriniva
2 Replies
2. UNIX for Dummies Questions & Answers
the server i have here is a Ubuntu server. it has nagios on it.
after setting up nagios and having it work as it should, i realized at the very end of all my work that obviously nagios will also need to send out email alerts to a set of email addresses that it has in its database.
my problem... (1 Reply)
Discussion started by: SkySmart
1 Replies
3. AIX
Hi,
I am new to UNIX and any help is greatly appreciated.
Requirement:
Need to check the directory and if the directory has some files then an email needs to be sent to the email ID on Lotus Notes.
I need help on sending an email to email ID on Lotus Notes notifying that the files... (3 Replies)
Discussion started by: neetutg
3 Replies
4. Solaris
Hi Team,
I want to use "Courier New" fonts while sending emails using mailx command from solaris command prompt.
Because my SQL output is not printing in correct format in the email.
Please assist. Let me know for any details.
Thanks, (1 Reply)
Discussion started by: Mukharam Khan
1 Replies
5. Shell Programming and Scripting
What I am doing is running ps and search for any connection that is over a specified number, I set it to "1" for testing I want to send an email when any of them are over 50 I want them all in one email
Below is the code what I want is to display the output of ps and grepping for "httpd" to a... (3 Replies)
Discussion started by: slufoot80
3 Replies
6. Shell Programming and Scripting
I have a shell script that sends email alerts to all the teams if there's any issue identified .
This is the command that I use to send email alerts to others
cat out.out | mail -s "Alerts on $date" $EMAILID
Above code sends emails to all the users by default it sends emails to... (2 Replies)
Discussion started by: lazydev
2 Replies
7. Shell Programming and Scripting
Hi All,
I want to send each file to each email id as below.
Instead of writing saparate 10 mail commands
can we do it in a simple step.
file1.csv to raghu.s@hps.com
file2.csv to kiran.m@hps.com
file3.csv to kenni.d@hps.com
file4.csv to rani.d@hps.com
file5.csv to sandya.s@hps.com... (2 Replies)
Discussion started by: ROCK_PLSQL
2 Replies
8. Shell Programming and Scripting
I'm unable to send email from my Linux server despite SMTP port 25 Active and Listening.
# hostname
TechX
I checked the mail log ( /var/log/maillog ) and found the below error.
I'm sharing all the ".cf" files seen in the error log.
1.
# more /etc/postfix/main.cf
# postfix... (0 Replies)
Discussion started by: mohtashims
0 Replies
9. Debian
Hi,
Our email relay server is a debian server.
The application team in our company regularly receives email alerts from one hpux server (which is routed through the email relay server).
Today we had problems whereby our company's email recipients are not receiving email alerts from the hpux... (2 Replies)
Discussion started by: anaigini45
2 Replies
LEARN ABOUT DEBIAN
logcheck
Logcheck(8) System Manager's Manual Logcheck(8)
NAME
logcheck -- program to scan system logs for interesting lines
SYNOPSIS
logcheck [OPTIONS]
DESCRIPTION
The logcheck program helps spot problems and security violations in your logfiles automatically and will send the results to you periodi-
cally in an e-mail. By default logcheck runs as an hourly cronjob just off the hour and after every reboot.
logcheck supports three level of filtering: "paranoid" is for high-security machines running as few services as possible. Don't use it if
you can't handle its verbose messages. "server" is the default and contains rules for many different daemons. "workstation" is for shel-
tered machines and filters most of the messages. The ignore rules work in additive manner. "paranoid" rules are also included at level
"server". "workstation" level includes both "paranoid" and "server" rules.
The messages reported are sorted into three layers, system events, security events and attack alerts. The verbosity of system events is
controlled by which level you choose, paranoid, server or workstation. However, security events and attack alerts are not affected by
this.
EXAMPLES
logcheck can be invoked directly thanks to su(8) or sudo(8), which change the user ID. The following example checks the logfiles without
updating the offset and outputs everything to STDOUT.
sudo -u logcheck logcheck -o -t
OPTIONS
A summary of options is included below.
-c CFG Overrule default configuration file.
-d Debug mode.
-h Show usage information.
-H Use this hostname string in the subject of logcheck mail.
-l LOG Run logfile through logcheck.
-L CFG Overrule default logfiles list.
-m Mail report to recipient.
-o STDOUT mode, not sending mail.
-p Set the report level to "paranoid".
-r DIR Overrule default rules directory.
-R Adds "Reboot:" to the email subject line.
-s Set the report level to "server".
-S DIR Overrule default state directory.
-t Testing mode does not update offset.
-T Do not remove the TMPDIR.
-u Enable syslog-summary.
-v Print current version.
-w Set the report level to "workstation".
FILES
/etc/logcheck/logcheck.conf is the main configuration file.
/etc/logcheck/logcheck.logfiles is the list of files to monitor.
/usr/share/doc/logcheck-database/README.logcheck-database.gz for hints on how to write, test and maintain rules.
EXIT STATUS
0 upon success; 1 upon failure
SEE ALSO
logtail(8)
AUTHOR
logcheck is developed by Debian logcheck Team at alioth: http://alioth.debian.org/projects/logcheck/.
This manual page was written by Jon Middleton.
Logcheck(8)