How to Get Linux Server Sends Email Alert on Root Login

To improve the security of the server, especially web server which exposes to the Internet and possible worldwide hackers, it’s best to enable server to automatically send a notification email to predefined email address everytime someone logs in as root to the host. To configure the automatic email alert notification to a default email address on each incident of root log on on the server, use the following guide.

  1. Login to the server via SSH using as root ID.
  2. Ensure that you’re at home directory of root. The open up the .bash_profile for editing using pico or vi by typing one of the following commands at command shell line:

    pico .bash_profile
    vi .bash_profile

  3. Scroll down to the end of the file and add the following line:


    echo 'ALERT - Root Shell Access on:' `date` `who` | mail -s "Alert: Root Access from `who | cut -d"(" -f2 | cut -d")" -f1`" user@example.com

    Replace user@email.com with the actual email account address that you want to the root access alert notification been sent to. Note that you can change the text contains in the email alert too. The text starting with first ALERT is written as email body, and you can add in other info such as host name or change the wordings. The second Alert is the email title which you can change to your own too.

Now logout and login again as root, you should receive an email alert at your inbox. The security trick should works on most popular flavor of Linux such as RedHat, CentOS, Ubuntu, FreeBSD and etc.

Share and contribute or get technical support and help at My Digital Life Forums.



This entry was posted on Saturday, August 11th, 2007 at 11:26 pm and is filed under Webmaster Resources. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

2 Responses to “How to Get Linux Server Sends Email Alert on Root Login”

  1. Linux - wysyłanie maila o logowaniu na konto roota « Barni.LOG
    August 12th, 2007 03:10
    1

    [...] Linux - wysyłanie maila o logowaniu na konto roota Bardzo użyteczny skrypcik [...]

  2. Jon
    May 3rd, 2008 05:43
    2

    ‘who -m’ makes the output much cleaner when using this on a system that has multiple users logged on…

    -m reports only hostname and user associated with stdin terminal

Leave a Reply

You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Subscribe without commenting

« Logitech Quickcam Pro 9000
Round-shaped Camera Design Enabled Full Panoramic View »

Custom Search

New Articles

Incoming Search Terms for the Article

change root email - email root logins - linux email on login - linux mail alert - linux mail root - Linux email alerts - mail root linux - linux alert on root login - linux login alert - delete root mail - linux change root email address - change root email address - linux email notification to root - turn off mail notification linux - linux turn off mail notification - how to get the root mail - E-mail Alert on Root SSH Login - linux notify on login - send root mail to email address - changing the root mail ID in linux - set root email address - centos root email - set root email - email on root login - linux server email alerts - send email notification linux - linux mail change from - mail alert on ssh login - send mail to root automatics - linux email root login - linux 登录通知 - linux change root email - Alert: Root Access from - centos system notification emails - delete mail/root - linux change user email address - last logged user email linux - linux email when login - ubuntu root email address - How do I change root email id linux - send an email when a user logs in linux - set root mail - get notified when root logs in - yahoo 2008 love email to email.com - change email root - Email Alert on Root SSH Login - linux, send email when log in to root - linux root mail - notify on root login - check root email centos -