This is the mail archive of the
cygwin
mailing list for the Cygwin project.
Re: Enable logging remote ssh contacts
Cyrille Lefevre wrote:
>
>
> Le 28/04/2011 14:29, Fokke Nauta a Ãcrit :
> Hi,
>> Thanks for your help and explanation.
>
> you're welcome...
>
>> For a beginning: "syslogd must be started before sshd... does it ?"
>> It does. I can read the file /var/log/messages from the Cygwin shell and
>> it
>> gets filled with data.
>
> right.
>
>> Hence the reason I did not follow your instructions as I thought it was
>> working allright.
>
> as you wich.
>
> <snip>
>
>> What is the difference between LogLevel INFO and LogLevel VERBOSE in
>> /etc/sshd-config?
>
> I'd like the following message which permit to identify the incoming
> connexion :
>
> Apr 25 23:35:03 pcvista sshd: PID 11500: Found matching DSA key:
> a5:44:9f:8e:2e:ea:76:7a:4f:6e:46:7f:08:25:67:6e
>
>> My properties of /var/log/messages (and here lies the problem that the
>> file
>> is not accessable from withing Windows):
>>
>> ls -ld messages
>> -rw------- 1 SYSTEM root 47648 Apr 28 14:09 messages
>>
>> getfacl messages
>> # file: messages
>> # owner: SYSTEM
>> # group: root
>> user::rw-
>> group::---
>> mask:rwx
>> other:---
>>
>> Should I use chmod on /var/log/messages?
>
> no, setfacl %-|
>
> (getfacl messages | echo group:Users:r--) | setfacl -m -f - messages
>
> PS : replace Users by the equivalents group on your system (Utilisateurs
> in french under Vista, don't know under XP ?)
> well, the last one :
> v2$ id
> uid=1000(Cyrille) gid=513(None)
> groups=513(None),0(root),544(Administrateurs),545(Utilisateurs)
>
>
> Regards,
>
> Cyrille Lefevre
>
Hi,
I entered (getfacl messages | echo group:Users:r--) | setfacl -m -f -
messages
and got as result: Segmentation fault (core dumped)
Here is the dump:
Exception: STATUS_ACCESS_VIOLATION at eip=611134F9
eax=00000000 ebx=61245B54 ecx=0000662D edx=FEFF0100 esi=61245B54
edi=00403F98
ebp=0022BFA8 esp=0022BF90 program=D:\cygwin\bin\setfacl.exe, pid 1712,
thread main
cs=001B ds=0023 es=0023 fs=003B gs=0000 ss=0023
Stack trace:
Frame Function Args
0022BFA8 611134F9 (61245B54, 0000003A, 0022BFD8, 6111452F)
0022BFD8 004015C5 (00000002, 61245B54, 0022C144, 000006B0)
0022C108 004018B0 (00000002, 61245B54, 0022C144, 0022CD44)
0022CD58 00401B8F (61245B40, 00000000, 0022CD98, 61007038)
0022CD98 61007038 (00000000, 0022CDD4, 61006980, 7FFDD000)
End of stack trace
id gives:
uid=1003(Fokke Nauta) gid=513(None)
groups=513(None),0(root),544(Administrators),545(Users),1005(boinc_admins)
Now everything works fine except that every action of copying
/var/log/messages to /cygdrive/e/files/logs/cygwin/ssh.log generates an
entry in /var/log/messages. Is there any way to avoid that?
Regards,
Fokke
--
View this message in context: http://old.nabble.com/Enable-logging-remote-ssh-contacts-tp31478200p31503455.html
Sent from the Cygwin list mailing list archive at Nabble.com.
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple