kabachook/README.md

## README.md

      
    Raw
  

              README.md
            
          
    Installation


Add notify.sh to some place
Change token and chat_id values (you can get chat_id, e.g. by writing to bot and requesting getUpdates)
chmod +x /path/to/notify.sh
echo "session optional pam_exec.so seteuid /path/to/notify.sh" >> /etc/pam.d/sshd

You can change optional to required if you sure that everything works

  
## notify.sh
#!/bin/sh

# Change these two lines:
token=""
chat_id="11111"

if [ "$PAM_TYPE" != "close_session" ]; then
    host="`hostname`"
    message="SSH login $PAM_USER from $PAM_RHOST on $host"
    curl "https://api.telegram.org/bot$token/sendMessage?chat_id=$chat_id&text=$message"
    message="`env`"
    curl --data-urlencode "text=$message" "https://api.telegram.org/bot$token/sendMessage?chat_id=$chat_id"
fi

## sshd
# Append this to /etc/pam.d/sshd
session optional pam_exec.so seteuid /etc/ssh/notify.sh
	#!/bin/sh

	# Change these two lines:
	token=""
	chat_id="11111"

	if [ "$PAM_TYPE" != "close_session" ]; then
	host="`hostname`"
	message="SSH login $PAM_USER from $PAM_RHOST on $host"
	curl "https://api.telegram.org/bot$token/sendMessage?chat_id=$chat_id&text=$message"
	message="`env`"
	curl --data-urlencode "text=$message" "https://api.telegram.org/bot$token/sendMessage?chat_id=$chat_id"
	fi
	# Append this to /etc/pam.d/sshd
	session optional pam_exec.so seteuid /etc/ssh/notify.sh