pam-send-slack-message is a program that publishes messages on slack when the linux server is accessed through ssh.
Go to releases page and download last release.
bash
sudo mkdir -p /usr/local/bin/
sudo cp pam-send-slack-message /usr/local/bin/pam-send-slack-message
chmod +x /usr/local/bin/pam-send-slack-message
You need a SLACK-TOKEN with channel.write permission and a SLACK-CHANNEL-ID. Follow instructions here, if you are lost.
```bash echo "session optional pam_exec.so /usr/local/bin/pam-send-slack-message SLACK-CHANNEL-ID SLACK-TOKEN" | sudo tee /etc/pam.d/sshd
sudo chmod o-r /etc/pam.d/sshd ```
After configuration, just log via ssh.
Pre-requisites: you need is a working cargo + rust compiler, make and gcc.
bash
make clean
make all
In order to test, you need a SLACK-TOKEN with channel.write permission and a SLACK-CHANNEL-ID
Simulate a pam login using ssh:
bash
make SLACK_CHANNEL_ID=slack_channel_id SLACK_TOKEN=slack_token fake-open-session
Simulate a pam logout using ssh:
bash
make SLACK_CHANNEL_ID=slack_channel_id SLACK_TOKEN=slack_token fake-close-session
In order to avoid pass env vars all the time, I recommend use direnv, there's a sample .envrc in envrc.sample
bash
cp envrc.sample .envrc
direnv allow .
change /etc/pam.d/sshd to:
session optional pam_exec.so debug log=/tmp/file_to_log.txt /usr/local/bin/pam-send-slack-message SLACK-CHANNEL-ID SLACK-TOKEN
See /tmp/pam-slack.log, also see audit logs, in ubuntu they are located in /var/log/auth.log
Pull requests are welcome. For major changes, please open an issue first to discuss what you would like to change.