Questions tagged [logwatch]
10 questions
8
votes
2 answers
How do I fix 'MDS CPU bug present and SMT on, data leak possible' errors from logwatch?
The error message says to check:
See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/mds.html for more details.
But I'm not 100% sure how to fix it.
I looked in /etc/default/intel-microcode and found this:
# Configuration script for…
Tex Morgan
- 81
5
votes
1 answer
Why does fail2ban report my auth.log file as removed?
I have logwatch running and I check every morning it's content. I have noticed that my auth.log file is erased after an apt upgrade and reboot.
Here is the fail2ban section of the logwatch after an upgrade and reboot yesterday.
---------------------…
chmike
- 1,014
1
vote
1 answer
Installing logwatch but getting postfix and dependencies error
Having a trouble trying to install logwatch on Ubuntu 22.04 LTS. Here is the output when trying to install:
# apt install logwatch
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
logwatch is already…
Moasson
- 21
- 3
1
vote
0 answers
18.04 logwatch version is mismatched to postfix-policyd-spf-python -- how to escalate?
Ubuntu 18.04 LTS provides the versions shown below of logwatch, postfix, and postfix-policyd-spf-python. This particular release of logwatch is old, and does not correctly process some of the messages produced by postfix-policyd-spf-python. As a…
1
vote
0 answers
Logwatch shows entries that do not exist
Logwatch shows
A total of 13 possible successful probes were detected (the following URLs
contain strings that match one or more of a listing of strings that
indicate a possible exploit):
…
Alex
- 21
1
vote
0 answers
Block IP:s recognized by logwatch using fail2ban+ufw?
I got fail2ban and logwatch running on my server. Each day I have a few IP:s that's been probing my server and also a few "Attempts to use known hacks", as it states in the daily mail.
I would like to block these IP:s using the knowledge of…
Daniel Holm
- 630
0
votes
0 answers
Logwatch Not Sending Emails
I am on Ubuntu 20.04 server and I have installed / configured logwatch according these Ubuntu instructions that are little outdated:
https://help.ubuntu.com/community/Logwatch
While I can execute logwatch in terminal... and see output... I cannot…
nightwatch
- 805
- 3
- 23
- 51
0
votes
1 answer
Lines of Log Files referenced by Logwatch Warnings (Ubuntu Server 18.04)
How do I find specific lines in Log Files that are referenced by Ubuntu Logwatch like the ones marked below... within Amavis and postfix?
Going by date I can grep all the instances of "warning" or any other words (which I have been doing), but there…
Andras
- 131
0
votes
0 answers
Why does logwatch hang processing sshd on a fresh install of Ubuntu 18.04 server?
$ sudo logwatch --service sshd --debug 100 --output stdout
...
TimeFilter: Period is day
TimeFilter: SearchDate is (2019-10-13T..:..:..\.[0-9]+[+-][0-9]{2}:[0-9]{2} )
TimeFilter: Debug SearchDate is (2019-10-13T \ [0-9]+[+-][0-9]{2} [0-9]{2}…
GlenPeterson
- 1,451
0
votes
1 answer
Auth Log shows successful login from disabled user accounts
We are using Ubuntu 16.04 and have commented out few users in passwd configuration but the authentication log shows successful login attempts from those users.
The point is we have specifically specified which users can login to OS and also have…
Alphax01
- 11