Re: Redirecting ssh messages

Matthew Gwin · ‎09-26-2006

Does anyone know a way to make ssh redirect log messages (e.g. "Accepted publickey for user from x.x.x.x") to a seperate logfile instead of syslog.log? I'd love to cean up all that clutter...

Steven E. Protter · ‎09-26-2006

Shalom,

You should be able to configure that in the /etc/syslog.conf file

Then restart the syslog daemon.

SEP

Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com

Kevin Wright · ‎09-26-2006

you could to something like:

in syslogd.conf
SyslogFacility AUTH
LogLevel INFO

Then restart sshd.

Then add this line to /etc/syslog.conf

auth.info;mail.none /var/adm/syslog/sshd.log

Or use a local facility.

Matthew Gwin · ‎09-26-2006

Kevin - I can't find a syslogd.conf file anywhere on my servers. I'm running 11.11. Is this a file I should create, and if so, where does it belong. Thanks!

Matthew Gwin · ‎09-26-2006

Thanks for setting me in the right direction Kevin - here's what I ended up doing:

(1) Enabled the following lines in /opt/ssh/etc/sshd_config:

SyslogFacility AUTH
LogLevel INFO

(2) Restarted sshd

(3) Added the following line to /etc/syslog.conf:

auth.info;mail.none /var/adm/syslog/sshd.log

(4) Changed this line in /etc/syslog.conf:
*.info;mail.none /var/adm/syslog/syslog.log

to:
*.info;auth.none;mail.none /var/adm/syslog/syslog.log

(5) kill -HUP `cat /var/run/syslog.pid`

Matthew Gwin · ‎09-26-2006

Solution described in comments above

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Re: Redirecting ssh messages

Redirecting ssh messages