cron:session flood my auth.log
Hi folks, first of all i am sorry about my English.
I am running Apache 2 mod php5, it uses a cron job for cleaning sessions, ok. Also, Debian uses another one.
CRON[x]: pam_unix(cron:session): session opened for user root by (uid=0), flood my auth.log
I want to keep this pam-cron logs, but not in auth.log, i tried to making an rsyslog.d rule, but it does not work:
# vi auth-cron.conf
if $syslogfacility-text == 'auth' \
and $msg contains 'CRON*' then -/var/log/auth-cron.log
if $syslogfacility-text == 'authpriv' \
and $msg contains 'CRON*' then -/var/log/auth-cron2.log
& ~
I am very bad with scripting, and much more bad with rsyslog scripting...
Any help? Thanks
|