Sftp uses ssh protocols. It should be found with all the optional Bering lrp modules.
I might be wrong about sftp, though. I read up some more, and it appears that sftp cannot pass the password through batch (non-interactive) mode. This is probably a security risk. I however think that there is an alternative which may be harder. You may be able to grab the logs through http. Since you can view the logs (0-3) through the weblet, you can use lynx to grab the contents of the log and then pipe to a file. The only problem with this is that I don't know on what time basis the logs rotate. Suppose the logs rotate every day (easiest example) first you need to setup a script on your logging machine to run lynx: ----------------------------------------------- #!bin/sh cd /logdirectory rm -f oldlogfiles lynx -dump http://firewall/logs/log1 >> logfile1 lynx -dump http://firewall/logs/log2 >> logfile2 . . . ------------------------------------------------ Then you need to edit your crontab file to run it every day. ------------------------------------------------- 0 0 * * * /directory/scriptfile ------------------------------------------------- If the logs don't rotate on a time basis, then the solution is a bit tricky. I would need some more info on how it works, but you could just grab the logs every day and then use perl or some other script to determine if the log is new and decide to save it or trash it. My preference is java since I know it best. You could then add the script to the crontab file. Minh ------------------------------------------------------ Message: 6 Reply-To: <[EMAIL PROTECTED]> From: <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Subject: Re: [leaf-user] Missing Logs ??? Date: Wed, 27 Nov 2002 11:29:32 -0600 > About your third question: I really don't think > anyone is erasing your log files. But if you really > are paranoid about some accessing your firewall, you > can write-protect your floppies so that the intruder > can't really change your configuration permanently. A > little paranoia is a healthy thing. I don't think someone is really erasing them either because as I had stated, I had a friend run nmap & he couldn't find anything so I'm closed to most of the script kiddies. And as to write-protecting the floppies, I do & for actually making changes to the floppies... because the floppy drives on my leaf box are of an older variety they don't play nice with the 1680 format, they can read it, but they tear up the disk writing it. All leaf disks are now written only on my programming computer with a much newer floppy drive that plays nice with 1680. This also prevents the possibilty of someone hacking the firewall & changing things while I'm trying to save stuff to the floppy (if you really want to be that paranoid). > To get to your log files, you will need the sftp.lrp > module. Configure it then save your changes to your > floppies. On another machine set up a cron job to > routinely sftp into your firewall and get the logs. Ok, sounds good... I'm guessing this goes along with the ssh.lrp package (which I've already set up) & I'm guessing sftp also comes in the ssh package in most distros? Now all I need is a newbie help file on setting up a cron job... any suggestions? :) > Minh thanks much Patrick [original message snipped] --__--__-- Message: 7 Reply-To: "Joey Officer" <[EMAIL PROTECTED]> From: "Joey Officer" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]> Subject: Re: [leaf-user] Missing Logs ??? Date: Wed, 27 Nov 2002 13:01:43 -0600 the cron part would actually need to call a script. I believe what you would do is setup a cron on both sides, tar the files, into one, file have sftp (or even ssh copy) grab the file and decompress on the archiving machine. as for cron itself, man cron is extremely informative, and I'm not being a smart ass, it is very thorough. joey __________________________________________________ Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now. http://mailplus.yahoo.com ------------------------------------------------------- This SF.net email is sponsored by: Get the new Palm Tungsten T handheld. Power & Color in a compact size! http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0002en ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html