[donotprint]
| Tutorial details | |
|---|---|
| Difficulty | Easy (rss) |
| Root privileges | Yes |
| Requirements | FreeBSD |
| Time | 5m |
Install Logwatch Tool on a FreeBSD
Type the following commands as root user:
# portsnap fetch update
# cd /usr/ports/sysutils/logwatch
# make install clean
OR you can install binary package using the pkg command:
# pkg install sysutils/logwatch
Configure logwatch log analyzer
The default configuration file located at /usr/local/etc/logwatch/defaults/logwatch.conf. Use a text editor to configure logwatch, enter:
# vi /usr/local/etc/logwatch/defaults/logwatch.conf
You need to setup MailTo variable to get reports summery via email, enter:
MailTo = vivek@nixcraft.in, admin@example.com
Set Print to No:
Print = No
If set to ‘Yes’, the report will be sent to screen instead of being mailed to above person(s). Save and close the file. Configure rest of the parameters as per your requirements.
Install cronjob
Install cronjob as follows, to run report, enter
# vi /etc/crontab
OR
# crontab -e
Append following code:
### Logwatch cron job ### @daily /usr/local/sbin/logwatch.pl
Save and close the file. Now you should get daily emails. Sample logwatch report from my system:
################### Logwatch 7.3.6 (05/19/07) ####################
Processing Initiated: Tue Jul 8 06:25:03 2008
Date Range Processed: yesterday
( 2008-Jul-07 )
Period is day.
Detail Level of Output: 5
Type of Output: unformatted
Logfiles for Host: freebsd.nixcraft.in
##################################################################
--------------------- Cron Begin ------------------------
Commands Run:
User root:
/usr/bin/rsnapshot daily: 1 Time(s)
/usr/bin/rsnapshot hourly: 6 Time(s)
if [ -x /usr/bin/vnstat ] && [ `ls /var/lib/vnstat/ | wc -l` -ge 1 ]; then /usr/bin/vnstat -u; fi: 288 Time(s)
---------------------- Cron End -------------------------
--------------------- Named Begin ------------------------
**Unmatched Entries**
client 122.167.76.117 notify question section contains no SOA: 2 Time(s)
---------------------- Named End -------------------------
--------------------- pam_unix Begin ------------------------
cron:
Sessions Opened:
root: 2240 Time(s)
sshd:
Sessions Opened:
payal: 545 Time(s)
payal by payal: 8 Time(s)
su:
Sessions Opened:
root -> nobody: 3 Time(s)
---------------------- pam_unix End -------------------------
--------------------- postfix Begin ------------------------
77502 bytes transferred
14 messages sent
14 messages removed from queue
Top ten local senders:
14 messages sent by:
root (uid=0):
---------------------- postfix End -------------------------
--------------------- SSHD Begin ------------------------
Users logging in through sshd:
payal:
192.168.0.5 (laptop.nixcraft.in): 460 times
192.168.0.7 (desktop.nixcraft.in): 93 times
---------------------- SSHD End -------------------------
--------------------- Disk Space Begin ------------------------
Filesystem 1K-blocks Used Avail Capacity Mounted on
/dev/ad4s1a 507630 384080 82940 82% /
devfs 1 1 0 100% /dev
/dev/ad6s1d 237397844 17597052 200808966 8% /disk1
/dev/ad4s1d 507630 14 467006 0% /tmp
/dev/ad4s1f 224192598 3170358 203086834 2% /usr
/dev/ad4s1e 10154158 93652 9248174 1% /var
procfs 4 4 0 100% /proc
devfs 1 1 0 100% /var/named/dev
devfs => 100% Used. Warning. Disk Filling up.
procfs => 100% Used. Warning. Disk Filling up.
devfs => 100% Used. Warning. Disk Filling up.
---------------------- Disk Space End -------------------------
###################### Logwatch End #########################
For more information see the official logwatch project home page.
🐧 If you liked this page, please support my work on Patreon or with a donation.
🐧 Get the latest tutorials on SysAdmin, Linux/Unix, Open Source/DevOps topics:
🐧 Get the latest tutorials on SysAdmin, Linux/Unix, Open Source/DevOps topics:
- RSS feed or Weekly email newsletter
- Share on Twitter • Facebook • 5 comments... add one ↓
UP NEXT
| Category | List of Unix and Linux commands |
|---|---|
| File Management | cat |
| Firewall | Alpine Awall • CentOS 8 • OpenSUSE • RHEL 8 • Ubuntu 16.04 • Ubuntu 18.04 • Ubuntu 20.04 |
| Network Utilities | dig • host • ip • nmap |
| OpenVPN | CentOS 7 • CentOS 8 • Debian 10 • Debian 8/9 • Ubuntu 18.04 • Ubuntu 20.04 |
| Package Manager | apk • apt |
| Processes Management | bg • chroot • cron • disown • fg • jobs • killall • kill • pidof • pstree • pwdx • time |
| Searching | grep • whereis • which |
| User Information | groups • id • lastcomm • last • lid/libuser-lid • logname • members • users • whoami • who • w |
| WireGuard VPN | Alpine • CentOS 8 • Debian 10 • Firewall • Ubuntu 20.04 |
Hi,
I tried to install logwatch using this tut… its running and mailing but im getting this error in my mailbox:
Undefined subroutine &main::TimeBuild called at /usr/local/sbin/logwatch.pl line 850.
Any ideas on how to fix this?
I get the same error. Any fix?
I had this exact error. I did:
cd /usr/ports/sysutils/logwatch
make deinstall
make reinstall
The reinstall pulled in version logwatch-7.3.6 which executes without error.
I’m running perl 5.8.9 and freebsd 7.1-p6
“MailTo = vivek@nixcraft.in, admin@example.com”
Is this necessarry if I change /etc/aliases = root myemail@domain.con
kindly correct the second command to
cd /usr/ports/sysutils/logwatch