Date: Sat, 3 Nov 2001 22:46:21 -0800 From: Sean Ellis <sellis@telus.net> To: brain_damaged <brain_damaged@florida-wireless.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: httpd log files big Message-ID: <42120651196.20011103224621@telus.net> In-Reply-To: <Pine.BSF.4.21.0111032357121.66878-100000@ren.sasknow.com> References: <Pine.BSF.4.21.0111032357121.66878-100000@ren.sasknow.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello bd, Saturday, November 03, 2001, 10:05:20 PM, you wrote: >> And does anyone have a perl script or program to read the httpd logs >> and pull out failed access or something to auto notify of virus >> attacks or such ? I've been trying out a utility called 'logcheck' to monitor my log files. Not the apache logs, but I imagine you could add them into the config without problem. It will email you an alert according to what you have told it to ignore or to pay attention to. > Sure... It's pretty trivial to write a shell script with grep/awk etc to > pull out the bits you want. You can fine tune a Perl script a bit more. > Maybe if you post some specific requirements one of us can help you write > something. > General (untested) approach using grep: > #!/bin/sh > grep -v cmd.exe $1 > | grep -v root.exe > | grep -v something_else_you_want_to_filter >> Thanks >> Bd >> >> To Unsubscribe: send mail to majordomo@FreeBSD.org >> with "unsubscribe freebsd-questions" in the body of the message >> -- Best regards, Sean mailto:sellis@telus.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?42120651196.20011103224621>