mailinabox/setup/login-alerts.sh

source /etc/mailinabox.conf # load global vars

cat <<EOF >> /etc/ssh/login-alert.sh
#!/bin/sh
sender="bot@PRIMARY_HOSTNAME"
recepient="admin@$PRIMARY_HOSTNAME"

if [ "$PAM_TYPE" != "close_session" ]; then
    subject="SSH Login: $PAM_USER from $PAM_RHOST"
    # Message to send, e.g. the current environment variables.
    message="If you don't recognize this login, your key or password may be compromised."
    echo "$message" | mailx -r "$sender" -s "$subject" "$recepient"
fi
EOF

chmod +x /etc/ssh/login-alert.sh

echo 'session optional pam_exec.so seteuid /etc/ssh/login-alert.sh' >> /etc/pam.d/sshd
Fix domain 2016-09-16 16:56:05 +00:00			`source /etc/mailinabox.conf # load global vars`
Create login-alerts.sh 2016-09-16 16:39:40 +00:00
Fix domain 2016-09-16 16:56:05 +00:00			`cat <<EOF >> /etc/ssh/login-alert.sh`
Create login-alerts.sh 2016-09-16 16:39:40 +00:00			`#!/bin/sh`
Fix domain 2016-09-16 16:56:05 +00:00			`sender="bot@PRIMARY_HOSTNAME"`
			`recepient="admin@$PRIMARY_HOSTNAME"`
Create login-alerts.sh 2016-09-16 16:39:40 +00:00
			`if [ "$PAM_TYPE" != "close_session" ]; then`
Fix domain 2016-09-16 16:56:05 +00:00			`subject="SSH Login: $PAM_USER from $PAM_RHOST"`
Create login-alerts.sh 2016-09-16 16:39:40 +00:00			`# Message to send, e.g. the current environment variables.`
			`message="If you don't recognize this login, your key or password may be compromised."`
			`echo "$message" \| mailx -r "$sender" -s "$subject" "$recepient"`
Fix domain 2016-09-16 16:56:05 +00:00			`fi`
			`EOF`
Create login-alerts.sh 2016-09-16 16:39:40 +00:00
			`chmod +x /etc/ssh/login-alert.sh`

			`echo 'session optional pam_exec.so seteuid /etc/ssh/login-alert.sh' >> /etc/pam.d/sshd`