Hello,
How can we filter messages like :
indrh03 sshd[21250]: Accepted publickey for score from 192.168.18.47 port 51034 ssh2
indrh03 sshd[21250]: pam_unix(sshd:session): session opened for user score by (uid=0)
indrh03 sshd[21250]: pam_unix(sshd:session): session closed for user score
such that they are not written to log files (for exaple on system indrh03 in secure, sudolog, etc).
Thanks&Regards,
Mahive.
You can decrease the level of verbosity given by the SSH daemon by altering the LogLevel directive in your sshd.conf. The possible values are: QUIET, FATAL, ERROR, INFO, VERBOSE, DEBUG, DEBUG1, DEBUG2 and DEBUG3.
You could also replace the standard syslogd with syslog-ng if you need to filter.
Hello,
Thanks a lot for your reply. Could you please let me know which sshd.conf are you referring to? I have tried to modify the value to QUIET under /etc/sshd/sshd_config and also commented the below mentioned lines under /etc/log.d/conf/services/sshd.conf to no effect.
LogFile = secure
LogFile = messages
Regards,
Mahive.