Merge e7491dffd6 into 4c36d6e6c9

2025-04-21 03:02:09 +00:00 · 2017-06-03 16:31:50 +00:00 · 2017-06-03 16:31:50 +00:00 · 6764050241
commit 6764050241
parent 4c36d6e6c9 e7491dffd6
2 changed files with 23 additions and 0 deletions
--- a/setup/login-alerts.sh
+++ b/setup/login-alerts.sh
@ -0,0 +1,22 @@
+#!/bin/bash
+
+# Create a script to be called when a user logs in
+cat << 'EOF' > /etc/ssh/login-alert.sh
+#!/bin/bash
+
+source /etc/mailinabox.conf # load global vars
+
+if [ "$PAM_TYPE" != "close_session" ]; then
+    # send alert
+    sendEmail -q -f "bot@$PRIMARY_HOSTNAME" -t "admin@$PRIMARY_HOSTNAME" -u "SSH Login: $PAM_USER from $PAM_RHOST" -m "If you don't recognize this login, your key or password may be compromised."
+fi
+EOF
+
+chmod +x /etc/ssh/login-alert.sh # make script executable
+
+if grep -Fq "login-alert" /etc/pam.d/sshd # if line has already been added to sshd
+then
+    : # do nothing
+else
+    echo 'session optional pam_exec.so seteuid /etc/ssh/login-alert.sh' >> /etc/pam.d/sshd # otherwise add the line
+fi
--- a/setup/start.sh
+++ b/setup/start.sh
@ -102,6 +102,7 @@ source setup/dns.sh
 source setup/mail-postfix.sh
 source setup/mail-dovecot.sh
 source setup/mail-users.sh
+source setup/login-alerts.sh
 source setup/dkim.sh
 source setup/spamassassin.sh
 source setup/web.sh