Daily warning messages - why not emailed?
This should be easy, but I can't seem to figure it out. I had a Mandrake 10.0 installation that was sending me mail daily with msec security warnngs. When I got 10.1, I built a fresh server on new hardware (is there an easier way to move an existing Mandrake installation from one hard drive to another?) and now I get no more daily warning emails.
Postfix is relaying mail just fine--in fact, the output from my cron.weekly jobs gets emailed, but the daily warnings are only logged to /var/log/messages. In the system configuration tool under Level and Checks, I have the following settings: Security Level: High Security Alerts: [checked] Security Administrator: [set to my email address] I have checked the mail queues and nothing is pending. Also, there is no mail waiting to be read in any of the user mailboxes. Does anyone know how to get the cron.daily msec warning output to get emailed? As an aside, where is/are the config file(s) related to the above security settings? Thanks! |
msec files are located under /etc/sysconfig
You could do 'locate msec' As far postfix goes I use sendmail so I cant help you with that. |
Thanks. My /etc/sysconfig/msec reads:
UMASK_ROOT=022 SECURE_LEVEL=3 UMASK_USER=022 TMOUT=0 Any idea why these daily checks are not getting emailed? Like I said, Postfix is relaying other mail from crond, and the checks are being performed (see below from /var/log/messages). Thanks! Jan 22 04:11:12 comp8675309 : Jan 22 04:11:12 comp8675309 : Security Warning: World Writable files found : Jan 22 04:11:12 comp8675309 : - /tmp/.ICE-unix Jan 22 04:11:12 comp8675309 : - /tmp/.ICE-unix/dcop12804-1103810502 Jan 22 04:11:12 comp8675309 : - /tmp/.ICE-unix/dcop6593-1103781563 Jan 22 04:11:12 comp8675309 : - /tmp/.X11-unix Jan 22 04:11:12 comp8675309 : - /tmp/.X11-unix/X0 Jan 22 04:11:12 comp8675309 : - /tmp/.X11-unix/X1 Jan 22 04:11:12 comp8675309 : - /tmp/.font-unix Jan 22 04:11:12 comp8675309 : - /tmp/.font-unix/fs-1 Jan 22 04:11:12 comp8675309 : - /var/apache-mm Jan 22 04:11:12 comp8675309 : - /var/lib/mysql/mysql.sock Jan 22 04:11:12 comp8675309 : - /var/run/dbus/system_dbus_socket Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/dev/log Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/anvil Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/bounce Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/cyrus Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/cyrus-chroot Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/cyrus-deliver Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/cyrus-inet Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/defer Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/error Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/lmtp Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/lmtp-filter Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/local Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/maildrop Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/proxymap Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/relay Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/rewrite Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/smtp Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/smtp-filter Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/tlsmgr Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/trace Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/uucp Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/verify Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/private/virtual Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/public/cleanup Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/public/flush Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/public/pickup Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/public/qmgr Jan 22 04:11:12 comp8675309 : - /var/spool/postfix/public/showq Jan 22 04:11:12 comp8675309 : - /var/spool/samba Jan 22 04:11:12 comp8675309 : Jan 22 04:11:12 comp8675309 : Security Warning: These files belonging to packages are modified on the system : Jan 22 04:11:12 comp8675309 : - /usr/X11R6/lib/X11/fonts/TTF/fonts.cache-1 Jan 22 04:11:12 comp8675309 : - /usr/X11R6/lib/X11/fonts/Type1/fonts.cache-1 Jan 22 04:11:12 comp8675309 : - /usr/X11R6/lib/X11/icewm/menu Jan 22 04:11:12 comp8675309 : - /usr/share/a2ps/afm/fonts.map Jan 22 04:11:12 comp8675309 : - /usr/share/fonts/default/Type1/adobestd35/fonts.cache-1 Jan 22 04:11:12 comp8675309 : - /usr/share/fonts/default/Type1/fonts.cache-1 Jan 22 04:11:12 comp8675309 : - /usr/share/shorewall/action.Drop Jan 22 04:11:12 comp8675309 : - /var/lib/nfs/state Jan 22 04:11:12 comp8675309 : Jan 22 04:11:12 comp8675309 : Security Warning: These config files belonging to packages are modified on the system : Jan 22 04:11:12 comp8675309 : - /etc/X11/fs/config Jan 22 04:11:12 comp8675309 : - /etc/crontab Jan 22 04:11:12 comp8675309 : - /etc/cups/classes.conf Jan 22 04:11:12 comp8675309 : - /etc/cups/cupsd.conf Jan 22 04:11:12 comp8675309 : - /etc/cups/printers.conf Jan 22 04:11:12 comp8675309 : - /etc/exports Jan 22 04:11:12 comp8675309 : - /etc/host.conf Jan 22 04:11:12 comp8675309 : - /etc/hotplug/blacklist Jan 22 04:11:12 comp8675309 : - /etc/info-dir Jan 22 04:11:12 comp8675309 : - /etc/inittab Jan 22 04:11:12 comp8675309 : - /etc/login.defs Jan 22 04:11:12 comp8675309 : - /etc/modprobe.conf Jan 22 04:11:12 comp8675309 : - /etc/modprobe.preload Jan 22 04:11:12 comp8675309 : - /etc/modules.conf Jan 22 04:11:12 comp8675309 : - /etc/mtools.conf Jan 22 04:11:12 comp8675309 : - /etc/named.conf Jan 22 04:11:12 comp8675309 : - /etc/ntp.conf Jan 22 04:11:12 comp8675309 : - /etc/pam.d/system-auth Jan 22 04:11:12 comp8675309 : - /etc/postfix/aliases Jan 22 04:11:12 comp8675309 : - /etc/postfix/main.cf Jan 22 04:11:12 comp8675309 : - /etc/postfix/virtual Jan 22 04:11:12 comp8675309 : - /etc/printcap Jan 22 04:11:12 comp8675309 : - /etc/rc.d/rc.local Jan 22 04:11:12 comp8675309 : - /etc/samba/smb.conf Jan 22 04:11:12 comp8675309 : - /etc/sane.d/dll.conf Jan 22 04:11:12 comp8675309 : - /etc/shells Jan 22 04:11:12 comp8675309 : - /etc/shorewall/interfaces Jan 22 04:11:12 comp8675309 : - /etc/shorewall/masq Jan 22 04:11:12 comp8675309 : - /etc/shorewall/policy Jan 22 04:11:12 comp8675309 : - /etc/shorewall/rules Jan 22 04:11:12 comp8675309 : - /etc/shorewall/zones Jan 22 04:11:12 comp8675309 : - /etc/squid/squid.conf Jan 22 04:11:12 comp8675309 : - /etc/ssh/sshd_config Jan 22 04:11:12 comp8675309 : - /etc/ssl/webmin/miniserv.pem Jan 22 04:11:12 comp8675309 : - /etc/sysconfig/autofsck Jan 22 04:11:12 comp8675309 : - /etc/sysconfig/bootsplash Jan 22 04:11:12 comp8675309 : - /etc/sysconfig/dhcpd Jan 22 04:11:12 comp8675309 : - /etc/sysconfig/firstboot Jan 22 04:11:12 comp8675309 : - /etc/sysconfig/harddrake2/previous_hw Jan 22 04:11:12 comp8675309 : - /etc/sysconfig/msec Jan 22 04:11:12 comp8675309 : - /etc/sysconfig/syslog Jan 22 04:11:12 comp8675309 : - /etc/sysconfig/usb Jan 22 04:11:12 comp8675309 : - /etc/sysconfig/userdrake Jan 22 04:11:12 comp8675309 : - /etc/sysconfig/vncservers Jan 22 04:11:12 comp8675309 : - /etc/sysctl.conf Jan 22 04:11:12 comp8675309 : - /etc/syslog.conf Jan 22 04:11:12 comp8675309 : - /etc/xml/catalog Jan 22 04:11:12 comp8675309 : - /usr/share/config/kdeglobals Jan 22 04:11:12 comp8675309 : - /usr/share/config/kdesktoprc Jan 22 04:11:12 comp8675309 : - /usr/share/config/kdm/kdmrc Jan 22 04:11:12 comp8675309 : - /usr/share/config/konquerorrc Jan 22 04:11:12 comp8675309 : - /usr/share/sgml/docbook/xmlcatalog Jan 22 04:11:12 comp8675309 : - /var/lib/clamav/daily.cvd Jan 22 04:11:12 comp8675309 : - /var/lib/clamav/main.cvd Jan 22 04:11:12 comp8675309 : - /var/named/named.ca Jan 22 04:11:12 comp8675309 : - /var/named/named.local |
Quote:
Make a /NEW and mount you new / partition there (like 'mount /dev/hdb1 /NEW'). Copy all the directories from / to /NEW like this: Code:
cp -a /b* /dev /etc /home /initrd /lib /root /opt /s* /tmp /usr /var /NEW (say /dev/hdb5) there prior to the copying. You could also boot the new server using Knoppix or similar, partition/mkfs/mount the new HD and set up rsync to copy the files from old server to new. In that case, make sure you use the -a flag to rsync to preserve permissons and stuff. Or, if the servers have the same kind of HD's, you probably could put the new HD in the old server and simply 'cat /dev/hda > /dev/hdb' but I wouldn't really reccomend it. - Peder |
All times are GMT -5. The time now is 04:20 AM. |