search for: lognam

hi all, i'm moving from a maildrop+courier setup to lda(sieve)+dovecot setup. with maildrop i had a global filter for all the users, so i could filter and archive into the spam folder spam tagged emails for users without custom filters, including them if they exist: LOGNAME=tolower($LOGNAME) `test -e $LOGNAME` if ( $RETURNCODE != 0 ) { `maildirmake $LOGNAME` `maildirmake $LOGNAME/._spam` } `test -f $LOGNAME/mailfilter` if ( $RETURNCODE == 0 ) { include "$LOGNAME/mailfilter" } if ( /^X-Spam-Status: YES */) { to "$LOGNAME...

..."$WINEPREFIX" ]; then wineprefixstatus="Not clean" else wineprefixstatus="Clean" fi if ! winever=`$wine --version` 2> /dev/null; then echo "Fatal error: Cannot run wine with command '$wine'!" 1>&2 exit 1 fi mkdir "$logpath" logname="$logpath/$1.$date.$winever.log" echo "----------------------------------------------------------"|tee "$logname" echo "Wine version: $winever" |tee -a "$logname" echo "WINEPREFIX: '$WINEPREFIX'"|tee -a "$logname" echo...

...g my password by brute force. what would be the best to stop this attack and how? the server running apache mysql and ftp PORT STATE SERVICE 21/tcp open ftp 80/tcp open http 443/tcp open https 3306/tcp open mysql ... Jan 22 16:07:14 user vsftpd(pam_unix)[17462]: authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=195.95.228.150 Jan 22 16:07:16 user vsftpd(pam_unix)[16737]: check pass; user unknown Jan 22 16:07:16 user vsftpd(pam_unix)[16737]: authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=195.95.228.150 Jan 22 16:07:17 user vsftpd(pam_unix)[17462]: check pas...

Hi there, I know this is the classic RTFM list question but... I've really tried hard on this and no result! This is what I'm receving from logcheck: System Events =-=-=-=-=-=-= Apr 3 06:55:13 bsg sshd[32246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.233.245.226 user=root Apr 3 06:55:19 bsg sshd[32248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.233.245.226 user=root Apr 3 06:55:25 bsg sshd[32250]: pam_unix(sshd:auth): authentication failure; logname= uid...

Had two nameservers crash in the last few hours... This 'never' happens! On the console was sent an invalid ICMP type 3, code 3 error to a broadcast: 255.255.255.255 on eth0 sent an invalid ICMP type 3, code 3 error to a broadcast: 255.255.254.255 on eth0 with the IP address of the offender? in front of that line. Any ideas? Best, John Hinton

...boot? Is there a systemd file available? c: How do I create a lua policy that would catch these web dovecot login attempts? Feb 27 08:19:53 ourserver auth[15085]: pam_unix(dovecot:auth): check pass; user unknown Feb 27 08:19:53 ourserver auth[15085]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser= user at ourserver.ourdomain.edu rhost=177.72.0.158 Feb 27 08:20:35 ourserver auth[15085]: pam_unix(dovecot:auth): check pass; user unknown Feb 27 08:20:35 ourserver auth[15085]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser...

...y logs and there are often a hundered or so imap/dovecat process running. I am running RC Core3. Can anyone shead some light on how to correct this ? Jun 16 08:38:24 jidmail dovecot(pam_unix)[27653]: check pass; user unknown Jun 16 08:38:24 jidmail dovecot(pam_unix)[27653]: authentication failure; logname= uid=0 euid=0 tty= ruser= rhost= Jun 16 08:38:24 jidmail dovecot(pam_unix)[27657]: check pass; user unknown Jun 16 08:38:24 jidmail dovecot(pam_unix)[27657]: authentication failure; logname= uid=0 euid=0 tty= ruser= rhost= Jun 16 08:38:24 jidmail dovecot(pam_unix)[27658]: check pass; user unknown...

...Unknown Entries: check pass; user unknown: 23431 Time(s) But, when I check my log files I can?t find an IP address for the attacker. So, for example, if I search my logs for ?operator? I see: ./messages:Jun 15 23:30:56 lambdacenter dovecot(pam_unix)[15512]: authentication failure; logname= uid=0 euid=0 tty= ruser= rhost= user=operator ./messages:Jun 15 23:31:00 lambdacenter dovecot(pam_unix)[15670]: authentication failure; logname= uid=0 euid=0 tty= ruser= rhost= user=operator ./messages:Jun 15 23:31:16 lambdacenter dovecot(pam_unix)[16332]: authentication failure; logname= uid=0...

...I'm using CentOS 4.2 with all the latest patches. As per the O'Reilly book "SSH, The Secure Shell: The Definitive Guide" (http://www.unix.org.ua/orelly/networking_2ndEd/ssh/ch08_02.htm#ch08-65720.html) I have prepended this string to my key in authorized_keys: environment="LOGNAME=mhenry" ssh-dss AAAAB3Nz..... The manpage also suggests that this syntax is supported. However, logging into this account using my key I see that the environment is not set: Using username "cvsstore". Authenticating with public key "dsa-key-20051105" from agent Last logi...

...ly trying to compile VMKit for the L4 Operating System and the L4Re Runtime environment for my student project. While doing so I stumbled upon a bug in the implementation of lib/J3/Classpath/ClasspathVMSystemProperties.inc The current version first tries to get the username by checking the LOGNAME environment variable. If this is NULL it then checks tmp = getenv("USERNAME"); if (!tmp) tmp = getenv("LOGNAME"); else if (!tmp) tmp = getenv("NAME"); else if (!tmp) tmp = ""; setProperty(vm, prop, "user. diff a/ClasspathVMSystemPrope...

I installed Dovecot on our FC3 sendmail server and get this from our Dallas office ( out of state to me ). dovecot(pam_unix)[13823]: authentication failure; logname= uid=0 euid=0 tty= ruser= rhost Only one Dallas user can get mail (pop3 or imap). All local users work fine. I ended upgoing back to UW and all works fine. What should I look for? Thanks -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://dovecot.org/p...

...d that, in the client modules ssh.c and tildexpand.c, it uses the call getpwuid(uid) as the basis for determining what the user's home directory is. In my case, this resolves to / instead of /export/home/rjohn. Wouldn't it be more appropriate to use something like getpwnam(getenv("LOGNAME")) instead ? Since the login program itself (in both Linux and Solaris) sets LOGNAME, it's a reasonably safe assumption that it will get set correctly. Even if it's not set, the program could check that there's a value in LOGNAME, and if there isn't, fall back to using get...

>From my secure log: Sep 19 01:16:44 lin12 dovecot-auth: pam_unix(dovecot:auth): check pass; user unknown Sep 19 01:16:44 lin12 dovecot-auth: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser= rhost=::ffff:64.31.19.48 Sep 19 01:16:44 lin12 dovecot-auth: pam_succeed_if(dovecot:auth): error retrieving information about user aaron Sep 19 01:16:45 lin12 dovecot-auth: pam_unix(dovecot:auth): check pass; user unknown Sep 19 01:16:45 lin12 dovecot-auth: pam_un...

...else paths are only taken when there inside if condition is false anyways. The elses should not be there but instead each method should be used until a username is returned. lib/J3/Classpath/ClasspathVMSystemProperties.inc tmp = getenv("USERNAME"); if (!tmp) tmp = getenv("LOGNAME"); else if (!tmp) tmp = getenv("NAME"); else if (!tmp) tmp = ""; The proper way to do this would be tmp = getenv("USERNAME"); if (!tmp) tmp = getenv("LOGNAME"); if (!tmp) tmp = getenv("NAME"); if (!tmp) tmp = ""; because t...

...m? Does it call %pre/%post install scripts? zypper alone can not be used because it calls rpm, which does chroot. It can however download the required rpms and place them into a directory: zypper \ --verbose \ --verbose \ --gpg-auto-import-keys \ --root /dev/shm/${LOGNAME} \ --reposd-dir /etc/zypp/repos.d \ --pkg-cache-dir /dev/shm/${LOGNAME}--pkg-cache-dir \ --non-interactive \ install \ --auto-agree-with-licenses \ --no-recommends \ --download-only \ kernel-default So what do you suggest to do on a...

..., the Samba documentation says that the default NetBIOS username used by client-type applications is determined by the following (from smbclient(1)), If no username is supplied, it will default to an uppercase version of the environment variable USER or LOGNAME in that order. If no username is sup- plied and neither environment variable exists the username "GUEST" will be used. However, very frequently a username on a given machine might not exactly match the username on another, but users may still have a near...

...s different than the rest of the world" department... AIX has something similar to setluid() on SCO, just that it uses text strings (similar to setenv()) and calls it "usrinfo". I've appended the man page below. Under normal conditions, well-behaved applications use ttyname(), logname() and getuid() get the relevant informations, but today I've come across one piece of commercial software that insists on using usrinfo(), and otherwise failed to use the proper user name when being called in an ssh session. So I'm afraid we have to support that. To my knowledge, usrinf...

...ms. Prior to upgrading, we had this box authenticating to AD just fine, but now it is broken. Here is part of my log file that might show what is going on. Jun 13 09:21:06 cent02 login(pam_unix)[2728]: check pass; user unknown Jun 13 09:21:06 cent02 login(pam_unix)[2728]: authentication failure; logname=LOGIN uid=0 euid=0 tty=tty1 ruser= rhost= Jun 13 09:21:06 cent02 pam_winbind[2728]: write to socket failed! Jun 13 09:21:06 cent02 pam_winbind[2728]: internal module error (retval = 3, user = `domain\user.name') Jun 13 09:21:09 cent02 login[2728]: FAILED LOGIN 1 FROM (null) FOR domain\user.nam...

...// For abs(). #include <cstring> @@ -94,6 +98,18 @@ LOGCALL_DTOR(API, "Database"); } +// LOG Function +void +Database::log(const std::string &query) { + cout << "In Database::log" << endl; + // For now usind DB's UUID to record logs + string logname = "../logs/" + this->get_uuid(); + cout << "Log file: " << logname << "Query " << query << endl; + std::ofstream logfile(logname.c_str(), ios::out | ios::app); + logfile << query << endl; + logfile.close(); +} + void...

...rror; + } else if (p = strstr (lines[i], "ascii-ci=")) { + buf = split_strdup (p + 9); + if (buf == NULL) goto error; + if (parse_uint32 (&ret->cimode, buf) == -1) + goto error; + } else if (p = strstr (lines[i], "log =")) { + ret->logname = split_strdup (p + 10); + if (ret->logname == NULL) goto error; + } else if (p = strstr (lines[i], "version=")) { + buf = split_strdup (p + 8); + if (buf == NULL) goto error; + if (parse_uint32 (&ret->logversion, buf) == -1) + goto error; + } e...