From 4da57a998a459cb28375235ef19965511508439d Mon Sep 17 00:00:00 2001 From: Frank Brehm Date: Thu, 20 Jul 2017 06:43:01 +0200 Subject: [PATCH] daily autocommit --- .etckeeper | 13 +++++++-- logwatch/conf/logfiles/cron.conf | 21 ++++++++++++++ logwatch/conf/logfiles/daemon.conf | 18 ++++++++++++ logwatch/conf/logfiles/fail2ban.conf | 32 ++++++++++++++++++++++ logwatch/conf/logfiles/iptables.conf | 24 ++++++++++++++++ logwatch/conf/logfiles/maillog.conf | 23 ++++++++++++++++ logwatch/conf/logfiles/named.conf | 24 ++++++++++++++++ logwatch/conf/logfiles/secure.conf | 26 ++++++++++++++++++ logwatch/conf/logfiles/syslog.conf | 19 +++++++++++++ logwatch/conf/logwatch.conf | 24 ++++++++++++++++ logwatch/conf/services/iptables.conf | 41 ++++++++++++++++++++++++++++ logwatch/conf/services/named.conf | 37 +++++++++++++++++++++++++ 12 files changed, 300 insertions(+), 2 deletions(-) create mode 100644 logwatch/conf/logfiles/cron.conf create mode 100644 logwatch/conf/logfiles/daemon.conf create mode 100644 logwatch/conf/logfiles/fail2ban.conf create mode 100644 logwatch/conf/logfiles/iptables.conf create mode 100644 logwatch/conf/logfiles/maillog.conf create mode 100644 logwatch/conf/logfiles/named.conf create mode 100644 logwatch/conf/logfiles/secure.conf create mode 100644 logwatch/conf/logfiles/syslog.conf create mode 100644 logwatch/conf/logwatch.conf create mode 100644 logwatch/conf/services/iptables.conf create mode 100644 logwatch/conf/services/named.conf diff --git a/.etckeeper b/.etckeeper index 6f8e138..f17f891 100755 --- a/.etckeeper +++ b/.etckeeper @@ -26,8 +26,6 @@ mkdir -p './initramfs-tools/scripts/nfs-top' mkdir -p './initramfs-tools/scripts/panic' mkdir -p './insserv/overrides' mkdir -p './kernel/install.d' -mkdir -p './logwatch/conf/logfiles' -mkdir -p './logwatch/conf/services' mkdir -p './logwatch/scripts/services' mkdir -p './modprobe.d' mkdir -p './network/if-pre-up.d' @@ -1027,7 +1025,18 @@ maybe chmod 0644 'logrotate.d/ulogd2' maybe chmod 0755 'logwatch' maybe chmod 0755 'logwatch/conf' maybe chmod 0755 'logwatch/conf/logfiles' +maybe chmod 0644 'logwatch/conf/logfiles/cron.conf' +maybe chmod 0644 'logwatch/conf/logfiles/daemon.conf' +maybe chmod 0644 'logwatch/conf/logfiles/fail2ban.conf' +maybe chmod 0644 'logwatch/conf/logfiles/iptables.conf' +maybe chmod 0644 'logwatch/conf/logfiles/maillog.conf' +maybe chmod 0644 'logwatch/conf/logfiles/named.conf' +maybe chmod 0644 'logwatch/conf/logfiles/secure.conf' +maybe chmod 0644 'logwatch/conf/logfiles/syslog.conf' +maybe chmod 0644 'logwatch/conf/logwatch.conf' maybe chmod 0755 'logwatch/conf/services' +maybe chmod 0644 'logwatch/conf/services/iptables.conf' +maybe chmod 0644 'logwatch/conf/services/named.conf' maybe chmod 0755 'logwatch/scripts' maybe chmod 0755 'logwatch/scripts/services' maybe chmod 0644 'ltrace.conf' diff --git a/logwatch/conf/logfiles/cron.conf b/logwatch/conf/logfiles/cron.conf new file mode 100644 index 0000000..4549bbd --- /dev/null +++ b/logwatch/conf/logfiles/cron.conf @@ -0,0 +1,21 @@ +########################################################################## +# $Id: cron.conf 149 2013-06-18 22:18:12Z mtremaine $ +########################################################################## + +# What actual file? Defaults to LogPath if not absolute path.... +#Solaris is /var/cron/log -mgt +LogFile = syslog.d/cron.log +LogFile = syslog.d/.old/cron.log-*[0-9] + +# If the archives are searched, here is one or more line +# (optionally containing wildcards) that tell where they are... +Archive = syslog.d/.old/cron.*.gz +Archive = syslog.d/.old/cron-*.gz + +# Expand the repeats (actually just removes them now) +*ExpandRepeats + +# Keep only the lines in the proper date range... +*ApplyStdDate + +# vi: shiftwidth=3 tabstop=3 et diff --git a/logwatch/conf/logfiles/daemon.conf b/logwatch/conf/logfiles/daemon.conf new file mode 100644 index 0000000..d5c34fe --- /dev/null +++ b/logwatch/conf/logfiles/daemon.conf @@ -0,0 +1,18 @@ +########################################################################### +# $Id: daemon.conf 149 2013-06-18 22:18:12Z mtremaine $ +########################################################################### + +# daemon log file for debian-based systems + +LogFile = syslog.d/daemon.log +LogFile = syslog.d/.old/daemon.log-*[0-9] +Archive = syslog.d/.old/daemon.log.*.gz +Archive = syslog.d/.old/daemon.log-*.gz + +*ExpandRepeats +*ApplyStdDate + +########################################################################### +# Please send all comments, suggestions, bug reports, +# etc, to logwatch-devel@lists.sourceforge.net +########################################################################### diff --git a/logwatch/conf/logfiles/fail2ban.conf b/logwatch/conf/logfiles/fail2ban.conf new file mode 100644 index 0000000..377e264 --- /dev/null +++ b/logwatch/conf/logfiles/fail2ban.conf @@ -0,0 +1,32 @@ +########################################################################### +# $Id: fail2ban.conf 149 2013-06-18 22:18:12Z mtremaine $ +########################################################################### +# $Log: fail2ban.conf,v $ +# Revision 1.2 2006/12/15 04:53:39 bjorn +# Now using ApplyEuroDate, by Willi Mann. +# +# Revision 1.1 2006/05/30 19:04:26 bjorn +# Added fail2ban service, written by Yaroslav Halchenko. +# +########################################################################### + +# You can put comments anywhere you want to. They are effective for the +# rest of the line. + +# this is in the format of = . Whitespace at the beginning +# and end of the lines is removed. Whitespace before and after the = sign +# is removed. Everything is case *insensitive*. + +# Yes = True = On = 1 +# No = False = Off = 0 + + +*ApplyEuroDate + + +LogFile = fail2ban.log +LogFile = .old/fail2ban.log-*[0-9] + +Archive = .old/fail2ban.*.gz +Archive = .old/fail2ban-*.gz + diff --git a/logwatch/conf/logfiles/iptables.conf b/logwatch/conf/logfiles/iptables.conf new file mode 100644 index 0000000..3826d98 --- /dev/null +++ b/logwatch/conf/logfiles/iptables.conf @@ -0,0 +1,24 @@ +########################################################################## +# $Id$ +########################################################################## + +######################################################## +# This was written and is maintained by: +# Kirk Bauer +# +# Please send all comments, suggestions, bug reports, +# etc, to kirk@kaybee.org. +######################################################## + +# What actual file? Defaults to LogPath if not absolute path.... +LogFile = ulog/syslogemu.log + +# If the archives are searched, here is one or more line +# (optionally containing wildcards) that tell where they are... +Archive = ulog/syslogemu.log.* +Archive = ulog/syslogemu.log-* + +# Keep only the lines in the proper date range... +*ApplyStdDate + +# vi: shiftwidth=3 tabstop=3 et diff --git a/logwatch/conf/logfiles/maillog.conf b/logwatch/conf/logfiles/maillog.conf new file mode 100644 index 0000000..eff8d51 --- /dev/null +++ b/logwatch/conf/logfiles/maillog.conf @@ -0,0 +1,23 @@ +########################################################################## +# $Id: maillog.conf,v 1.14 2007/10/01 16:55:18 mike Exp $ +########################################################################## + +# What actual file? Defaults to LogPath if not absolute path.... +LogFile = syslog.d/mail.log +LogFile = syslog.d/.old/mail.log-*[0-9] + + +# If the archives are searched, here is one or more line +# (optionally containing wildcards) that tell where they are... +#If you use a "-" in naming add that as well -mgt +Archive = syslog.d/.old/mail.*.gz +Archive = syslog.d/.old/mail-*.gz + + +# Expand the repeats (actually just removes them now) +*ExpandRepeats + +# Keep only the lines in the proper date range... +*ApplyStdDate + +# vi: shiftwidth=3 tabstop=3 et diff --git a/logwatch/conf/logfiles/named.conf b/logwatch/conf/logfiles/named.conf new file mode 100644 index 0000000..90bbd17 --- /dev/null +++ b/logwatch/conf/logfiles/named.conf @@ -0,0 +1,24 @@ +########################################################################## +# $Id$ +########################################################################## + +######################################################## +# This was written and is maintained by: +# Frank Brehm +######################################################## + +# What actual file? Defaults to LogPath if not absolute path.... +LogFile = bind/named.log +LogFile = bind/security.log + +# If the archives are searched, here is one or more line +# (optionally containing wildcards) that tell where they are... +Archive = bind/named.log.* +Archive = bind/named.log-* +Archive = bind/.old/named.log.* +Archive = bind/.old/named.log-* + +# Keep only the lines in the proper date range... +*ApplyBindDate + +# vi: filetype=conf shiftwidth=3 tabstop=3 et diff --git a/logwatch/conf/logfiles/secure.conf b/logwatch/conf/logfiles/secure.conf new file mode 100644 index 0000000..5e9bf27 --- /dev/null +++ b/logwatch/conf/logfiles/secure.conf @@ -0,0 +1,26 @@ +########################################################################## +# $Id: secure.conf 149 2013-06-18 22:18:12Z mtremaine $ +########################################################################## + +# What actual file? Defaults to LogPath if not absolute path.... +LogFile = syslog.d/auth.log +LogFile = syslog.d/authpriv.log +LogFile = syslog.d/.old/auth.log-*[0-9] +LogFile = syslog.d/.old/authpriv.log-*[0-9] + +# If the archives are searched, here is one or more line +# (optionally containing wildcards) that tell where they are... +#If you use a "-" in naming add that as well -mgt +Archive = syslog.d/.old/auth.*.gz +Archive = syslog.d/.old/auth-*.gz +Archive = syslog.d/.old/authpriv.*.gz +Archive = syslog.d/.old/authpriv-*.gz + + +# Expand the repeats (actually just removes them now) +*ExpandRepeats + +# Keep only the lines in the proper date range... +*ApplyStdDate + +# vi: shiftwidth=3 tabstop=3 et diff --git a/logwatch/conf/logfiles/syslog.conf b/logwatch/conf/logfiles/syslog.conf new file mode 100644 index 0000000..89a8570 --- /dev/null +++ b/logwatch/conf/logfiles/syslog.conf @@ -0,0 +1,19 @@ +########################################################################### +# $Id: syslog.conf 149 2013-06-18 22:18:12Z mtremaine $ +########################################################################### + +# Syslog file for debian-based systems + +Logfile = +Archive = +LogFile = syslog +LogFile = .old/syslog-*[0-9] +Archive = .old/syslog.*.gz +Archive = .old/syslog-*.gz +*ExpandRepeats +#Comma separated list works best -mgt +*RemoveService = talkd,telnetd,inetd,nfsd,/sbin/mingetty +*applystddate +# *ApplyStdDate + +# vi: shiftwidth=3 tabstop=3 et diff --git a/logwatch/conf/logwatch.conf b/logwatch/conf/logwatch.conf new file mode 100644 index 0000000..b382226 --- /dev/null +++ b/logwatch/conf/logwatch.conf @@ -0,0 +1,24 @@ +# Local configuration options go here (defaults are in /usr/share/logwatch/default.conf/logwatch.conf) + +#Output/Format Options +#By default Logwatch will print to stdout in text with no encoding. +#To make email Default set Output = mail to save to file set Output = file +Output = stdout +#To make Html the default formatting Format = html +Format = text +#To make Base64 [aka uuencode] Encode = base64 +Encode = none + +# Default person to mail reports to. Can be a local account or a +# complete email address. Variable Output should be set to mail, or +# --output mail should be passed on command line to enable mail feature. +MailTo = frank@brehm-online.com + + +# The default detail level for the report. +# This can either be Low, Med, High or a number. +# Low = 0 +# Med = 5 +# High = 10 +Detail = High + diff --git a/logwatch/conf/services/iptables.conf b/logwatch/conf/services/iptables.conf new file mode 100644 index 0000000..854e310 --- /dev/null +++ b/logwatch/conf/services/iptables.conf @@ -0,0 +1,41 @@ +########################################################################### +# $Id$ +########################################################################### + +# You can put comments anywhere you want to. They are effective for the +# rest of the line. + +# this is in the format of = . Whitespace at the beginning +# and end of the lines is removed. Whitespace before and after the = sign +# is removed. Everything is case *insensitive*. + +# Yes = True = On = 1 +# No = False = Off = 0 + +Title = "iptables firewall" + +# Which logfile group... +#LogFile = messages +LogFile = iptables + +# Set this to yes to lookup IPs in kernel firewall report +$iptables_ip_lookup = Yes + +# Set this to enable a filter on iptables/ipchains displays +# This will block out hosts who have less than the specified +# number of hits between all ports. Defaults to 0. +$iptables_host_min_count = 0 + +# If both of the following settings are enabled, two output lists +# will be produced. If none is set, the old style output is prduced. +# Set this to generate old style output (sorted by source hosts) +#$iptables_list_by_host = 0 +# Set this to generate new style output (sorted by targeted service) +$iptables_list_by_service = 1 + +######################################################## +# Please send all comments, suggestions, bug reports, +# etc, to logwatch-devel@lists.sourceforge.net +######################################################## + +# vi: shiftwidth=3 tabstop=3 et diff --git a/logwatch/conf/services/named.conf b/logwatch/conf/services/named.conf new file mode 100644 index 0000000..5e7b27b --- /dev/null +++ b/logwatch/conf/services/named.conf @@ -0,0 +1,37 @@ +########################################################################### +# $Id$ +########################################################################### + +# You can put comments anywhere you want to. They are effective for the +# rest of the line. + +# this is in the format of = . Whitespace at the beginning +# and end of the lines is removed. Whitespace before and after the = sign +# is removed. Everything is case *insensitive*. + +# Yes = True = On = 1 +# No = False = Off = 0 + +Title = "Named" + +# Which logfile group... +#LogFile = messages +LogFile = named + +# Whether or not to lookup the IPs into hostnames... +# Setting this to Yes will significantly increase runtime +$named_ip_lookup = No + +# Only give lines pertaining to the named service... +#*OnlyService = named +*RemoveHeaders + +######################################################## +# This was written and is maintained by: +# Kirk Bauer +# +# Please send all comments, suggestions, bug reports, +# etc, to kirk@kaybee.org. +######################################################## + +# vi: filetype=conf shiftwidth=3 tabstop=3 et -- 2.39.5