Generic Linux server setup: Difference between revisions
From dtype.org
(→move cron off to its own log: remove cron in auth.log) |
No edit summary |
||
Line 1: | Line 1: | ||
Things to do on all servers: | Things to do on all servers: | ||
== awslogs == | |||
* /var/log/auth.log | |||
* /var/log/mail.log | |||
* /var/log/syslog | |||
== move cron off to its own log == | == move cron off to its own log == | ||
Line 15: | Line 21: | ||
session [success=1 default=ignore] pam_succeed_if.so service in cron quiet use_uid | session [success=1 default=ignore] pam_succeed_if.so service in cron quiet use_uid | ||
session required pam_unix.so</nowiki> | session required pam_unix.so</nowiki> | ||
== fail2ban == | |||
* do |
Revision as of 14:04, 23 April 2017
Things to do on all servers:
awslogs
- /var/log/auth.log
- /var/log/mail.log
- /var/log/syslog
move cron off to its own log
- /etc/rsyslog.d/50-default.conf
*.*;auth,authpriv.none,cron.none -/var/log/syslog cron.* /var/log/cron.log
get rid of cron in auth.log
- /etc/pam.d/common-session-noninteractive, at end of file
# and here are more per-package modules (the "Additional" block) session [success=1 default=ignore] pam_succeed_if.so service in cron quiet use_uid session required pam_unix.so
fail2ban
- do