Package: logwatch
Version: 7.3.1-2
Severity: normal
Hi,
postfix-mysql and lib-nss-mysql spit out a few messages that are not
recognized in the secure log script. I added the following lines to
scripts/services/secure in order to ignore these messages:
or ( $ThisLine =~ /^postfix\/smtpd\[\d+\]: sql auxprop plugin using mysql
engine/ )
or ( $ThisLine =~ /^postfix\/smtpd\[\d+\]: sql plugin .*/ )
or ( $ThisLine =~ /^postfix\/smtpd\[\d+\]: (begin|commit) transaction/ )
There are quite a few 'sql plugin .*' debug messages and I was to lazy
to list them all separately :-)
or ( $ThisLine =~ /^nss-mysql\[\d+\]: _nss_mysql_getspnam_r conf file
parsing failed/ )
That is correct behaviour of libnss-mysql and caused by a non-root
process executing the equivalent of 'getent shadow'. Since this needs to
read a password column from the database the configuration file
containing the database password is readable by root only. (There is a
separate world readable configuration for passwd/group, but the database
password contained there should not allow access to the password
column).
It would be nice if these changes could be integrated into (the
debian package of) logwatch.
Thanks.
Andreas
-- System Information:
Debian Release: testing/unstable
APT prefers testing
APT policy: (500, 'testing'), (500, 'stable'), (300, 'unstable'), (30,
'experimental')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.17-2-k7
Locale: LANG=C, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
