|
|
Sponsored Content
Operating Systems
HP-UX
Unix Security - SU logs
Post 302340522 by TonyFullerMalv on Monday 3rd of August 2009 05:53:23 PM
08-03-2009
|
|
9 More Discussions You Might Find Interesting
1. UNIX Desktop Questions & Answers
hi
my name es juan
i have sco open server 5.0.4 release
i need clear the log files as wtmp
thanks you very much (1 Reply)
Discussion started by: jtapia
1 Replies
2. HP-UX
Hi All,
Can anybody tell me, how to trace out user access to the Unix Server Machine, (i,e) I want to find out the user who had executed some commands to alter the cron file.
Regards
Nag (3 Replies)
Discussion started by: nag_sundaram
3 Replies
3. UNIX for Dummies Questions & Answers
Hi.
Is there a way or command (other than netstat) in Unix to find out or get a list a users who FTP into a particular server? Like, say last 1000 users. I need to get the user ID (any info), who FTP to a particular server.
netstat gives only the users who have an FTp session currently.
... (2 Replies)
Discussion started by: manisendhil
2 Replies
4. Linux
Hi,
I need to get a hostory of users who FTP into a server. How can I do it in Linux/Unix? Is there a command for this? I do not want to use netstat -a as it gives only the list of users who have a session currently on the server. Can this be done with the "last" command?
Please do let me... (0 Replies)
Discussion started by: manisendhil
0 Replies
5. UNIX for Advanced & Expert Users
Hi,
I'm working in an application and the related Java code and the envrionment is in Unix server. We are generating the log messages using loggers of Java.util.log . But, the logs are not getting generated in the log files.
We feel that the people who developed the system might have done some... (6 Replies)
Discussion started by: kelangovan
6 Replies
6. UNIX for Advanced & Expert Users
Hi !
I have a FTP site, where I softlinked my server log file.
Now I want to view the logs in IE as I do in unix
Some kind of free tool should be there, Can somebody provide me a pointer.
Thanks. (0 Replies)
Discussion started by: dashok.83
0 Replies
7. UNIX for Advanced & Expert Users
Hi.
Is there a way or command (other than netstat) in Unix to find out or get a list a users who FTP into a particular server? Like, say last 1000 users. I need to get the user ID (any info), who FTP to a particular server.
netstat gives only the users who have an FTp session currently.
... (4 Replies)
Discussion started by: manisendhil
4 Replies
8. UNIX for Dummies Questions & Answers
Can any one give a explaination with examples on how to understand file transmission log files in Unix for inbound and outbound traffic. (1 Reply)
Discussion started by: ITDev01
1 Replies
9. UNIX for Dummies Questions & Answers
I'm working on Logs Management System. it requires from all Unix servers to send their logs files to a specific (IP, Port).
Please help me to get the right conf on logs files to send them to that IP and port.
Any suggestions are highly appreciated.
:o:o (0 Replies)
Discussion started by: kinan adra
0 Replies
LEARN ABOUT DEBIAN
cisco_ios2dlf
CISCO_IOS2DLF.IN(1) LogReport's Lire Documentation CISCO_IOS2DLF.IN(1) NAME
cisco_ios2dlf - convert cisco logs to dlf format SYNOPSIS
cisco_ios2dlf DESCRIPTION
This script expects syslog-type logs from a CISCO IOS router on stdin. These look like e.g. Jul 3 00:00:39 router 40108: 4d09h: %SEC-6-IPACCESSLOGP: list FR_VA_in permitted udp 192.168.19.1(137) (Serial0/0.2 DLCI 120) -> 192.168.19.255(137), 2 packets Jul 3 00:02:39 router 40109: 4d09h: %SEC-6-IPACCESSLOGP: list FR_VA_in permitted udp 192.168.80.42(138) (Serial0/0.2 DLCI 120) -> 192.60.60.148(138), 1 packet Jul 3 00:02:39 router 40110: 4d09h: %SEC-6-IPACCESSLOGDP: list FR_VA_in permitted icmp 192.168.80.82 (Serial0/0.2 DLCI 120) -> 149.1.1.1 (8/0), 1 packet or Aug 19 04:02:34 gateway.foo.bar 218963: Aug 19 04:02:32.977: %LINEPROTO-5-UPDOWN: Line protocol on Interface BRI0:1, changed state to down Aug 19 04:02:34 gateway.foo.bar 218964: Aug 19 04:02:33.262: %ISDN-6-DISCONNECT: Interface BRI0:1 disconnected from 172605440 acme, call lasted 42 seconds Aug 19 04:02:35 gateway.foo.bar 218965: Aug 19 04:02:33.266: %LINK-3-UPDOWN: Interface BRI0:1, changed state to down Aug 19 04:02:38 gateway.foo.bar 218966: Aug 19 04:02:36.103: %SEC-6-IPACCESSLOGP: list 102 denied tcp 100.198.139.148(4652) -> 100.193.176.49(80), 1 packet Aug 19 04:02:45 gateway.foo.bar 218967: Aug 19 04:02:43.543: %ISDN-6-LAYER2DOWN: Layer 2 for Interface BR0, TEI 86 changed to down Aug 19 04:02:53 gateway.foo.bar 218968: Aug 19 04:02:51.471: %SEC-6-IPACCESSLOGP: list 102 denied tcp 100.74.103.1(2162) -> 100.193.176.98(80), 1 packet The outputted dlf files look like: 994118619 permitted icmp 192.168.80.9 - Serial0/0.2 DLCI_120 192.168.19.1 - 1 994118619 permitted udp 192.168.19.1 138 Serial0/0.2 DLCI_120 192.168.19.255 138 1 EXAMPLES
To process a log as produced by Cisco IOS: $ cisco_ios2dlf < cisco.log cisco_ios2dlf will be rarely used on its own, but is more likely called by lr_log2report: $ lr_log2report cisco_ios < /var/log/cisco.log AUTHORS
Francis J. Lacoste based on initial code by Joost Bekkers <joost@jodocus.org> VERSION
$Id: cisco_ios2dlf.in,v 1.8 2006/07/23 13:16:35 vanbaal Exp $ COPYRIGHT
Copyright (C) 2001 Joost Bekkers <joost@jodocus.org> Copyright (C) 2002 Stichting LogReport Foundation <logreport@logreport.org> This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program (see COPYING); if not, check with http://www.gnu.org/copyleft/gpl.html. Lire 2.1.1 2006-07-23 CISCO_IOS2DLF.IN(1)