[TriLUG] Modifying LogWatch
Brian Henning
brian at strutmasters.com
Wed Apr 19 09:01:41 EDT 2006
Hi Gang!
Just throwing out an idea to see if what I'm considering is safe. I
use phpmyadmin to manage my mysql server. Apache is configured only to
allow access from local LAN IPs, plus basic auth. Is it dangerous to
remove the "phpmyadmin" from the list of exploit markers in the http
logwatch script? All I ever see is "!!!! xx possible successful probes"
and they're always my own activity with the phpmyadmin suite.
Cheers,
~Brian
--
----------------
Brian A. Henning
strutmasters.com
336.597.2397x238
----------------
More information about the TriLUG
mailing list