System: Kali Linux - based on Debian (Stretch)
uname -a : Linux kali 4.18.0-kali3-amd64 #1 SMP Debian 4.18.20-2kali2 (2018-11-30) x86_64 GNU/Linux
I noticed that the space on my root partition was continuously shrinking even though I didn't do much on the machine and it wasn't even running continuously. Then I tested a script with a lot of calls to sudo in it and noticed that var/log/auth.log was getting rather large - understandable because of the sudo calls. I took a closer look at /var/log and it looks like there haven't been any log rotations since the end of August.
According to crontab they should be rotated every day. (I'm not sure what role anacron plays here currently which may be responsible for this kind of task if the machine isn't running 24/7.)
I took a look at /etc/cron.daily/logrotate (see below) and I don't understand the purpose of the test for the existence of /run/systemd/system and the exit if it exists. The directory is empty but it exists - so unless it disappears periodically the rest of the script will never execute.
I then executed the command /usr/sbin/logrotate /etc/logrotate.conf (at the end of the script) by hand and the logs were rotated.
Okay, I may be on a completely wrong track here and would benefit from a hint in the right direction.
Here the code of /etc/cron.daily/logrotate:
Thanks.
Hey Guys,
i am new into shell programming and i have to do one script which have to record all the commands entered by a specific user.
Example of that, i have a system running on unix, several users are using this system, i have to create like a databse which will record every user entered that... (5 Replies)
Hy, I have a question
I have a directory in a unix server,
Some of my files have a diffrent access time,
from the time i accessed them last,
I think some one has copied it,it's not an important file,but none the less,it is my file,It mistakenly had a 777 permission( yes ,I know it is a noob's... (1 Reply)
Hi,
I am trying to write a script which would go search and get the info from the logs based on yesterday timestamp and write yesterday logs in new file. The log file format is as follows:
""""""""""""""""""""""""""... (3 Replies)
Hi ,
I am running an application on my windows and it logs are generated at /var/logs and for this i have to go this location and then do tail -f , Is there any command you can advise me so that when I execute this command at this location that logs get displayed fully and as the application... (3 Replies)
Hello all,
I am working on a perl script which will read weblogic logfile and send the error messages to Zenoss Monitoring tool. At present the script works and it can able to send the error messages to Zenoss. The problem comes when the logrotate has been applied to the weblogic log file. At... (3 Replies)
Appreciate help for the below issue.
Im using below code.....I dont want to attach the logs when I ran the perl twice...I just want to take backup with today date and generate new logs...What I need to do for the below scirpt..............
1)if logs exist it should move the logs with extention... (1 Reply)
Discussion started by: Sanjeev G
1 Replies
LEARN ABOUT DEBIAN
epylog-modules
epylog-modules(5) Applications/System epylog-modules(5)NAME
epylog-modules - epylog module cofiguration.
SYNOPSIS
epylog uses pluggable modules to perform analysis and report on syslog strings. This manpage explains the format of the module config
files.
modules.d
Epylog config files are placed in the modules.d directory of the cfgdir specified in epylog.conf. Any file ending in .conf in that direc-
tory is considered a module config file. Most common location for modules.d directory is in /etc/epylog/modules.d.
module.conf
The name of the config file doesn't carry much meaning, however it MUST end in .conf in order to be recognized as a module config file.
The config file for each module is separated into two parts: [module] and [conf].
[module]
desc The description of the module. It will be shown in the final report.
exec This is where the "body" of the module is located. Most modules that come with the distribution will be placed in /usr/share/epy-
log/modules, but depending on your setup, you may place them elsewhere.
files List the logfiles requested by this module in this field. Separate multiple entries by comma. Epylog will handle rotated files, but
you need to specify the mask appropriately. E.g. the most common logrotate setup will place rotated files in the same directory and
add .0, .1, .2, etc to the end of the file. Therefore, a file entry would look like so:
/var/log/filename[.#]
If you have compression turned on, your entry will look like so:
/var/log/filename[.#.gz]
Lastly, for advanced configurations, more complex entries may be required. E.g. if your logrotate saves rotated files in a subdirec-
tory in /var/log, you can specify it like so:
/var/log/[rotate/]filename[.#.gz]
This will work, too:
/var/log/filename[/var/rotate/filename.#.gz]
In any case, "#" will be where the increments will go.
enabled
Can be either "yes" or "no". If "no" is specified, Epylog will completely ignore this module.
internal
Can be either "yes" or "no". If "yes", then the module is handled as an internal module, and if "no", then the external module API
is used. See doc/modules.txt for more information about the module APIs.
outhtml
Specifies whether the output produced by the module is HTML or not. Can be either "yes" or "no".
priority
An unsigned int. Most commonly a number from 0 to 10. Modules with the lowest number will be considered the highest prioroty and
will be both invoked and presented in the final report before the others.
[conf]
This is where per-module configuration directives go. Some modules have these, some don't. Look in the module config file -- the available
values should be listed and described there.
COMMENTS
Lines starting with "#" will be considered commented out.
AUTHORS
Konstantin Ryabitsev <icon@linux.duke.edu>
SEE ALSO epylog(8), Epylog(3), epylog.conf(5)Konstantin Ryabitsev 1.0 epylog-modules(5)