src/etc/periodic/security/800.loginfail
Dmitry Pryanishnikov
dmitry at atlantis.dp.ua
Fri Mar 17 01:07:57 UTC 2006
Hello!
On Thu, 16 Mar 2006, Garance A Drosehn wrote:
> But that's the problem, once you start down the road of
> matching "everything which might be useful", you open up
> a lot of questions as to which messages *are* interesting,
> and how they should be displayed in the security-email
> message. After all, *everything* in the authlog file is
> expected to be interesting in one way or another. Do we
> want to copy the entire file into the security email? I
> doubt it...
I understand current intent as "to report login failures",
and I think that refused by the sshd connection attempts
could be treated as such. OTOH, SSH.COM's sshd2 isn't the part
of the base OS, that's why I'm not sure whether such an addition
is "politically correct" (I'm sure it's useful though).
Sincerely, Dmitry
--
Atlantis ISP, System Administrator
e-mail: dmitry at atlantis.dp.ua
nic-hdl: LYNX-RIPE
More information about the freebsd-current
mailing list