Sending e-mail on successful SSH login / detecting SSH log-ins
I found
Send email on SSH login using PAM
to be a great guide for setting up e-mail delivery for any successful log-in through SSH. My current script:
#! /bin/bash if [ "$PAM_TYPE" != "open_session" ]; then exit 0 fi cat <<-BODY | mailx -s "Log-in to ${PAM_USER:-???}@$(hostname -f) \ (${PAM_SERVICE:-???}) detected" mail@example.org # $(LC_ALL=C date +'%Y-%m-%d %H:%M (UTC%z)') $(env | grep '^PAM_' | sort) BODY exit 0