Hello, we recently configured syslog on one of our machines with the following line in /etc/syslog.conf
*.info /audit/syslog.log rotate time 1d compress
However it does not seem to be logging incoming ftp connections, only outgoing ftp connections? Is there a way to log incoming ftp connections via syslog? Thanks in advance.
Don't know if AIX supports TCP Wrappers, if so, you could create a new rule in /etc/hosts.allow and using spawn action, you could launch /usr/bin/logger with the appropiate parameters to log the action.
See this example taken from FreeBSD:
ALL : 192.168.0.2 \
: spawn (/usr/bin/logger %a from %h attempted to access %d) \
: allow
As this can have very complex rules, I suggest you to take a look to tcp wrappers manual pages.
Salut
Are you using the -l option with ftpd. This should log to your syslog file if set.
Check in inetd.conf and add the -l as an option to ftpd
