Package: logwatch Version: 7.3.1-2 Severity: normal Hi,
postfix-mysql and lib-nss-mysql spit out a few messages that are not recognized in the secure log script. I added the following lines to scripts/services/secure in order to ignore these messages: or ( $ThisLine =~ /^postfix\/smtpd\[\d+\]: sql auxprop plugin using mysql engine/ ) or ( $ThisLine =~ /^postfix\/smtpd\[\d+\]: sql plugin .*/ ) or ( $ThisLine =~ /^postfix\/smtpd\[\d+\]: (begin|commit) transaction/ ) There are quite a few 'sql plugin .*' debug messages and I was to lazy to list them all separately :-) or ( $ThisLine =~ /^nss-mysql\[\d+\]: _nss_mysql_getspnam_r conf file parsing failed/ ) That is correct behaviour of libnss-mysql and caused by a non-root process executing the equivalent of 'getent shadow'. Since this needs to read a password column from the database the configuration file containing the database password is readable by root only. (There is a separate world readable configuration for passwd/group, but the database password contained there should not allow access to the password column). It would be nice if these changes could be integrated into (the debian package of) logwatch. Thanks. Andreas -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (500, 'testing'), (500, 'stable'), (300, 'unstable'), (30, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17-2-k7 Locale: LANG=C, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]