Date: Fri, 8 Jan 2010 10:31:03 GMT From: Mister Olli <mister.olli@googlemail.com> To: freebsd-gnats-submit@FreeBSD.org Subject: misc/142467: /var/log/auth.log may not be rotated for yours Message-ID: <201001081031.o08AV3xS084628@www.freebsd.org> Resent-Message-ID: <201001081040.o08Ae2ho001930@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 142467 >Category: misc >Synopsis: /var/log/auth.log may not be rotated for yours >Confidential: no >Severity: non-critical >Priority: medium >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: change-request >Submitter-Id: current-users >Arrival-Date: Fri Jan 08 10:40:02 UTC 2010 >Closed-Date: >Last-Modified: >Originator: Mister Olli >Release: 8.0, 6.2, 7.0 >Organization: >Environment: FreeBSD SYSTEM 6.2-RELEASE-p9 FreeBSD 6.2-RELEASE-p9 #6: Fri Feb 22 16:11:56 CET 2008 SYSTEM:/usr/obj/usr/src/sys/CUSTOM i386 >Description: On system with rare logins /var/log/auth.log may not get rotated, as '/etc/newsyslog.conf' is configured to rotate if filesize > 100kb. As login attempts via SSH are saved without year information '/etc/periodic/security/800.loginfail' will report fail logins from past years. This heavily confuses users. >How-To-Repeat: - Make a default installation - Do some failed logins - Wait 1 year ;-) >Fix: '/var/log/auth.log' should be rotated at least once a year. >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201001081031.o08AV3xS084628>