Enable logging remote ssh contacts
Cyrille Lefevre
cyrille.lefevre-lists@laposte.net
Fri Apr 29 08:16:00 GMT 2011
Le 28/04/2011 14:29, Fokke Nauta a écrit :
Hi,
> Thanks for your help and explanation.
you're welcome...
> For a beginning: "syslogd must be started before sshd... does it ?"
> It does. I can read the file /var/log/messages from the Cygwin shell and it
> gets filled with data.
right.
> Hence the reason I did not follow your instructions as I thought it was
> working allright.
as you wich.
<snip>
> What is the difference between LogLevel INFO and LogLevel VERBOSE in
> /etc/sshd-config?
I'd like the following message which permit to identify the incoming
connexion :
Apr 25 23:35:03 pcvista sshd: PID 11500: Found matching DSA key:
a5:44:9f:8e:2e:ea:76:7a:4f:6e:46:7f:08:25:67:6e
> My properties of /var/log/messages (and here lies the problem that the file
> is not accessable from withing Windows):
>
> ls -ld messages
> -rw------- 1 SYSTEM root 47648 Apr 28 14:09 messages
>
> getfacl messages
> # file: messages
> # owner: SYSTEM
> # group: root
> user::rw-
> group::---
> mask:rwx
> other:---
>
> Should I use chmod on /var/log/messages?
no, setfacl %-|
(getfacl messages | echo group:Users:r--) | setfacl -m -f - messages
PS : replace Users by the equivalents group on your system (Utilisateurs
in french under Vista, don't know under XP ?)
well, the last one :
v2$ id
uid=1000(Cyrille) gid=513(None)
groups=513(None),0(root),544(Administrateurs),545(Utilisateurs)
Regards,
Cyrille Lefevre
--
mailto:Cyrille.Lefevre-lists@laposte.net
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
More information about the Cygwin
mailing list