X-Recipient: archive-cygwin@delorie.com
X-SWARE-Spam-Status: No, hits=-1.4 required=5.0	tests=AWL,BAYES_00,FREEMAIL_FROM,RCVD_IN_DNSWL_LOW,SARE_FREE_WEBM_LAPOSTE,T_RP_MATCHES_RCVD,T_TO_NO_BRKTS_FREEMAIL
X-Spam-Check-By: sourceware.org
Message-ID: <4DB9E086.30200@laposte.net>
Date: Thu, 28 Apr 2011 23:47:50 +0200
From: Cyrille Lefevre <cyrille.lefevre-lists@laposte.net>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.8.1.3) Gecko/20070326 Thunderbird/2.0.0.0 Mnenhy/0.7.5.666
MIME-Version: 1.0
To: cygwin@cygwin.com
Subject: Re: Enable logging remote ssh contacts
References: <31478200.post@talk.nabble.com> <20110426132128.GA6293@jethro.local.lan> <31478748.post@talk.nabble.com> <4DB6E0EA.8070901@cygwin.com> <31481290.post@talk.nabble.com> <ip7d1h$tt4$1@dough.gmane.org> <31484865.post@talk.nabble.com> <31485107.post@talk.nabble.com> <ip9h0a$39g$1@dough.gmane.org> <31490012.post@talk.nabble.com> <4DB889D9.2070703@laposte.net> <31495952.post@talk.nabble.com>
In-Reply-To: <31495952.post@talk.nabble.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: quoted-printable
X-me-spamlevel: not-spam
X-me-spamrating: 38.799999
X-me-spamcause:  OK, (-30)(0000)gggruggvucftvghtrhhoucdtuddrfedukedrtdehucetggdotefuucfrrhhofhhilhgvmecuoehnohhnvgeqnecuuegrihhlohhuthemuceftddtnecuthhhvgcuphhrohgslhgvmhculddqfedtmd
X-IsSubscribed: yes
Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe@cygwin.com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin@cygwin.com>
List-Help: <mailto:cygwin-help@cygwin.com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner@cygwin.com
Mail-Followup-To: cygwin@cygwin.com
Delivered-To: mailing list cygwin@cygwin.com


Le 28/04/2011 14:29, Fokke Nauta a =C3=A9crit :
Hi,
> Thanks for your help and explanation.

you're welcome...

> For a beginning: "syslogd must be started before sshd... does it ?"
> It does. I can read the file /var/log/messages from the Cygwin shell and =
it
> gets filled with data.

right.

> Hence the reason I did not follow your instructions as I thought it was
> working allright.

as you wich.

<snip>

> What is the difference between LogLevel INFO and LogLevel VERBOSE in
> /etc/sshd-config?

I'd like the following message which permit to identify the incoming=20
connexion :

Apr 25 23:35:03 pcvista sshd: PID 11500: Found matching DSA key:=20
a5:44:9f:8e:2e:ea:76:7a:4f:6e:46:7f:08:25:67:6e

> My properties of /var/log/messages (and here lies the problem that the fi=
le
> is not accessable from withing Windows):
>
> ls -ld messages
> -rw------- 1 SYSTEM root 47648 Apr 28 14:09 messages
>
> getfacl messages
> # file: messages
> # owner: SYSTEM
> # group: root
> user::rw-
> group::---
> mask:rwx
> other:---
>
> Should I use chmod on /var/log/messages?

no, setfacl %-|

(getfacl messages  | echo group:Users:r--) | setfacl -m -f - messages

PS : replace Users by the equivalents group on your system (Utilisateurs=20
in french under Vista, don't know under XP ?)
well, the last one :
v2$ id
uid=3D1000(Cyrille) gid=3D513(None)=20
groups=3D513(None),0(root),544(Administrateurs),545(Utilisateurs)


Regards,

Cyrille Lefevre
--=20
mailto:Cyrille.Lefevre-lists@laposte.net



--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple