I have logwatch report thousands of HTTP requests with a request url of “null” to have resulted in a 408 error. But I can’t find them in any of my logs. I tried cd /var/log/apache2 grep “HTTP/1\.1. 408″ * and grep ‘HTTP/1\.1″ 408” * Conversely grep “HTTP/1\.1. 200” * shows results. Any idea how to … Read more
Is there a possibility so see from some unix log file what process have invoked a bash/ksh shell script or is this shell script invoked manually from command line? So is there some log file which stores this kind of history automatically? Answer Unless you have audit logging enabled there isn’t typically any way to … Read more
I’m having trouble making a shell script that will make a list of all the dates when users log in. I want the most recent entries to be on the top (because I know if you just use date >> logdates it’ll get displayed on the bottom. So I’d want the columns to be date, … Read more
I am programming in shell scripting, and would like to log results. Is there any way to know what is the default path storage for logfiles in my operating system? I have researched: set | grep “log” -i but there is nothing that seems to be like a log path directory. Answer For any system … Read more
I have a bunch of log files that correspond to remote hosts which vary by host name, split off using rsyslog. Can I use shell globs to refer to those log files instead of hard coding the file names in /etc/logcheck/logcheck.logfiles? Answer Yes, it is actually possible to use shell globs when setting the log … Read more
I have a web server which I have clearly not set up properly. One of the users (which webmin makes the owner of most of the sites) has 15G log files (even after the backup copies were removed). I am aware that these log files should be rotated but not a clue as to how … Read more
in my bash script I use the following approach in order to write every thing from standard output and standard error to log.txt export LOG=/tmp/installation/log.txt exec > $LOG 2>&1 so everything is writing to /tmp/installation/log.txt but how to do the writing to two different logs path lets say I want to write the same standard … Read more
I have a modified log file listing all the IP addresses which have accessed my server. Next to the IP address on each line is a date/time stamp. In my quest to filter bots and malicious activity, I would like to check if any IP addresses have made more than 5 requests in less than … Read more
To investigate within logs, I am trying to find the very first time a vulnerability in a workflow has been exploited. The pattern is on multiple lines. The pattern would be AAAAAAAAA BBBBBBBBB CCCCCCCCC The problem is that AAAAAAAAA or BBBBBBBBB or CCCCCCCCC Can be found anywhere indivdually in the log without showing the vulnerability; … Read more
How can I suppress error messages sent to a console? On: Ubuntu? Fedora? Debian? CentOS? RedHat? Answer Edit the configuration of your syslog daemon: /etc/rsyslog.conf, /etc/syslog-ng.conf or similar. Look for “console”. AttributionSource : Link , Question Author : peter567 , Answer Author : user1686
