Web lists-archives.com

Re: [Samba] Internal DNS logging

Hi Giuseppe,

please, stay on the list.

Le 01/18/2018 à 04:32 PM, Giuseppe Cesa Bianchi a écrit :
Thank you for your reply but users logon are already logged on log.samba
(I think when kerberos authenticate it).

My problem is the hundreds of line written by DNS on log, even at log
level 1. I'm asking if I can do something to stop it.

In smb.conf, try:

   log level = 1 auth_audit:3  dns:0

or in samba 4.7.4
   log level = 1 auth_json_audit:3 dns:0


Thanks anyway


On 1/18/2018 3:40 PM, Denis Cardon wrote:
Hi Giuseppe,

I have two Samba domain controllers version 4.6.4 on Centos 7.3.

I need to log every login/logout from windows PCs and I read on the wiki
that I have to set log level >=3, this works.

The problem is that my log.samba is filled by internal DNS messages,
most of them about forwarding.

in my smb.conf:

        log level = 3 auth:10
        vfs objects = full_audit

I googled around but I cannot find anything to avoid this.

For login, you should upgrade your server to Samba 4.7.4 and add json
auth logging with the auth_json_audit parameter [1].

For logout, it won't be really possible to have a definitive
information from the AD point of view. But you can probably script
something on your desktop and send it back to the server (if the
network connection is still up...)



[1] https://wiki.samba.org/index.php/Setting_up_Audit_Logging

Please help me!


Denis Cardon
Tranquil IT Systems
Les Espaces Jules Verne, bâtiment A
12 avenue Jules Verne
44230 Saint Sébastien sur Loire
tel : +33 (0)

To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba