[TriLUG] Modifying LogWatch

Brian Henning brian at strutmasters.com
Wed Apr 19 09:01:41 EDT 2006


Hi Gang!
   Just throwing out an idea to see if what I'm considering is safe.  I 
use phpmyadmin to manage my mysql server.  Apache is configured only to 
allow access from local LAN IPs, plus basic auth.  Is it dangerous to 
remove the "phpmyadmin" from the list of exploit markers in the http 
logwatch script?  All I ever see is "!!!! xx possible successful probes" 
and they're always my own activity with the phpmyadmin suite.

Cheers,
~Brian

-- 
----------------
Brian A. Henning
strutmasters.com
336.597.2397x238
----------------



More information about the TriLUG mailing list