Re: [TCLUG:7453] hosts.deny logging

To: tclug-list@mn-linux.org
Subject: Re: [TCLUG:7453] hosts.deny logging
From: Peter Lukas <peter@math.umn.edu>
Date: Tue, 10 Aug 1999 08:59:16 -0500 (CDT)
In-Reply-To: <4.1.19990809231637.03720b00@roye0004.email.umn.edu>

You can really have it do anything from logging to mailing you whenever
something:

sshd : ALL : spawn (echo "ssh by %u@%h to %s" >> /tmp/logs) : ALLOW

This will add something like this in /tmp/logs:

ssh by root@127.0.0.1 to sshd@127.0.0.1

You can put anything you like in (); this is always cool:

in.rlogind : ALL : spawn (echo "Autie Em, Toto just ran away" | \ 
           /usr/bin/Mail -s "Auntie Em, Toto..." \
	   page_root@rootspagingcomapny.com) & : DENY

Peter Lukas

On Mon, 9 Aug 1999, David Royer wrote:

> I am getting closer to having time to setup some proper ipchains rules but
> I have a fairly immediate need to deny a certain IP from connecting to my
> computer.  I have put the address in the hosts.deny file.  I am wordering
> if it is possible to get the tcpd daemon to write a message to the log file
> when this host trys to connect.
> 
> I say how this is possible with ipchains, but is there a quick way to do it
> with hosts.deny?  Or is it just best to spend the time and set up ipchains
> to do it?  I checked out the man page and some of my other reference
> material but I couldn't find any reference to what I want to do.
> 
> Thanks
> 
> Dave
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tclug-list-unsubscribe@mn-linux.org
> For additional commands, e-mail: tclug-list-help@mn-linux.org
> 
>

References:
- hosts.deny logging
  - From: David Royer <David.D.Royer-1@tc.umn.edu>

Prev by Date: Re: [TCLUG:7419] firewall configuration
Next by Date: XFS at Uofm??? was: Two Things
Prev by thread: hosts.deny logging
Next by thread: RE: voice recognition (was: [...] X10 offer)
Index(es):
- Date
- Thread