Hello all again,
I haven't been on for ages but I really blame it on the support that I got here :-) Didn't had any problems since some of you
helped me out with some LinuxMagic.
Anyway, she's mean again as I just wanted to tell her (the whitelight box) to send me the logs if it comes to a logrotate.
I tried the
(echo "Subject:Test"; cat /var/log/messages) | mini_sendmail -email@example.com -t -smail.account.de -Ppassword -v firstname.lastname@example.org
command in prompt which works great but using it within the logrotate.conf doesn't really work. Ok, the mail is comming in but it's … empty.
I tried nail and another one that I read about lately but both didn't even send a single mail successfully.
Is there any chance to have her mailing me the logs without installing a complete mailserver?
I'm not sure if it's even possible but I would really like to receive a mail from her if special events occur, let's say, someone tried to FTP the box.
Actually this is what I would really like to have instad of a logfile full of 'normal' things.
Any idea where to start?
Edit:Seems that I might have to scan some logs for the string but then the next question would be when to start it and how?
Another thing then would be, if it found the string and did mail me that it did find something, I don't want her to mail me the same 'find'
everytime the script is running … I really hope one of you already went through something like this and got a brilliant idea …
I'm talking about something like this (they seem to run scripts that look for setup or admin pages to take control or mess up the server …):
22.214.171.124 - - [10/Oct/2011:21:26:52 +0200] "GET /user/soapCaller.bs HTTP/1.1" 404 - "" "Morfeus Fucking Scanner" 126.96.36.199 - - [12/Oct/2011:01:56:19 +0200] "GET /backup/phpmyadmin/scripts/setup.php HTTP/1.1" 404 - "" "ZmEu" 188.8.131.52 - - [12/Oct/2011:01:56:20 +0200] "GET /backup/phpMyAdmin/scripts/setup.php HTTP/1.1" 404 - "" "ZmEu" 184.108.40.206 - - [12/Oct/2011:01:56:21 +0200] "GET /bbs/data/scripts/setup.php HTTP/1.1" 404 - "" "ZmEu" 220.127.116.11 - - [12/Oct/2011:01:56:22 +0200] "GET /bkup/phpmyadmin/scripts/setup.php HTTP/1.1" 404 - "" "ZmEu" 18.104.22.168 - - [12/Oct/2011:01:56:23 +0200] "GET /bkup/phpMyAdmin/scripts/setup.php HTTP/1.1" 404 - "" "ZmEu" 22.214.171.124 - - [12/Oct/2011:01:56:24 +0200] "GET /cpadmindb/scripts/setup.php HTTP/1.1" 404 - "" "ZmEu" 126.96.36.199 - - [12/Oct/2011:01:56:25 +0200] "GET /cpadmin/scripts/setup.php HTTP/1.1" 404 - "" "ZmEu" 188.8.131.52 - - [12/Oct/2011:01:56:26 +0200] "GET /cpanelmysql/scripts/setup.php HTTP/1.1" 404 - "" "ZmEu"