Hi folks I'm after either some signposting to a more appropriate place to ask or a solution. The problem I have is that I'm trying to setup logwatch to monitor a log file for a script I've written and am having no joy whatsoever. Here's the steps I've taken and content, ownership and permissions of relevant files (ask if I've missed something useful).
- Setup script to log to /var/log/ssh-validate
- Create script to process logfile (/etc/logwatch/scripts/services/ssh-validate)
- Create logfile definition (/etc/logwatch/logfiles/ssh-validate)
- Create service definition (/etc/logwatch/services/ssh-validate.conf)
File /etc/logwatch/scripts/services/ssh-validate root:root -rwxr-xr-x
Perl script, reads from STDIN, outputs to STDOUT, works from command line (using cat /var/log/ssh-validate | ./ssh-validate)
File /etc/logwatch/logfiles/ssh-validate root:root -rw-r--r--
LogFile = ssh-validate
Archive = ssh-validate.*.gz
File /etc/logwatch/services/ssh-validate.conf root:root -rw-r--r--
Title = ssh-validate
LogFile = ssh-validate
--
Robert Gauld
http://www.robertgauld.co.uk