I am running RedHat 8.
My logfiles fill up once a week and take a lot of space in HDD. I just
want to create a batch file to clean all the files once a week. Any
idea how can i do that ?
I guess i will run it through anacron, but i do not know how to create
the batch file.
Any idea is apprecia
On Mon, 2003-10-20 at 12:25, Genti Hila wrote:
> hi,
>
> I am running RedHat 8.
> My logfiles fill up once a week and take a lot of space in HDD. I just
> want to create a batch file to clean all the files once a week. Any
> idea how can i do that ?
Check out logrotate. The default config (/etc
hi,
I am running RedHat 8.
My logfiles fill up once a week and take a lot of
space in HDD. I just want to create a batch file to clean all the files once a
week. Any idea how can i do that ?
I guess i will run it through anacron, but i do not
know how to create the batch file.
Any idea i
On Fri, 2003-06-20 at 12:09, Tom Hosiawa wrote:
> > I know of no way to recover them, but for the future, create an alias
> > rm='cp $1 /tmp'
> >
> > you just have to set up a cron job or manually remove ,using
> > /usr/bin/rm, all the file in tmp every so often. We set this up on
> > students co
a good forensic toolkit at:
> http://www.atstake.com/research/tools/task/ It's free, and it'll check out
> the stuff in "free space", etc.
>
> Good Luck!
>
> Ben
> - Original Message -
> From: "Reuben D. Budiardja" <[EMAIL PROTECTED]>
> I know of no way to recover them, but for the future, create an alias
> rm='cp $1 /tmp'
>
> you just have to set up a cron job or manually remove ,using
> /usr/bin/rm, all the file in tmp every so often. We set this up on
> students computer's. We don't tell them about it so if they do they
>
rom: "Reuben D. Budiardja" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, June 20, 2003 10:45 AM
Subject: recover deleted log files
> Hello all,
> Is there a way to recover deleted log file (ie. /var/log/secure and
> /var/log/message) that I can try?
>
I know of no way to recover them, but for the future, create an alias
rm='cp $1 /tmp'
you just have to set up a cron job or manually remove ,using
/usr/bin/rm, all the file in tmp every so often. We set this up on
students computer's. We don't tell them about it so if they do they
learn a lesson
Hello all,
Is there a way to recover deleted log file (ie. /var/log/secure and
/var/log/message) that I can try?
Two of our machines have been hacked by (I suspect) the same person in 2
successive day. Right now we're leaning toward recovery and securing systems
rather than trying to track down
On 11/7/02 3:52 PM, "James" <[EMAIL PROTECTED]> tapped the keys:
> What is the "Best Practices" way of watch log files?
> Any ideas?
The previous posts had great suggestions, but figure I could throw in one
more. I'd add swatch to that mix. Look for it
+++ James [RedHat] [Thu, Nov 07, 2002 at 12:52:05PM -0800]:
> What is the "Best Practices" way of watch log files?
> Any ideas?
I use logmon, but I'm biased (I wrote it).
http://www.edespot.com/code/LogMon/
Yeah, shameless plug.
It monitors like "tail -f"
On Thu, 7 Nov 2002, James wrote:
> What is the "Best Practices" way of watch log files?
logwatch, logsentry, tail -f, etc. Whatever suits you.
--
"Whenever I feel blue, I start breathing again."
- Unknown
--
redhat-list m
What is the "Best Practices" way of watch log files?
Any ideas?
=
James J. Kiely
cell phone: (248) 935-3256
home phone: (586) 264-4527
__
Do you Yahoo!?
U2 on LAUNCH - Exclusive greatest hits videos
http://launch.yahoo.com/u2
and a web server, which log files should check
> regularly to ensure security?
___
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
Install tripwire to be sure that no files are tampered with that you don't
want changed and you should find all the log files you want to check in
/var/log. The most likely ones are messages, secure and httpd/error_log.
There are many systems to handle log monitoring logwatch and analog may
I am a newbie in linux administration . I am managing a lab with a
samba server and a web server, which log files should check
regularly to ensure security?
Thanks
Jianping Zhu
Department of Computer Science
Univerity of Georgia
Athens, GA 30602
ncois
> At 06:58 PM 2/26/01 +0100, you wrote:
> >Hello,
> >How do you do to keep the size of the log files to a "normal" size ?
> >Do you run a script, ??
> >The /var/log/daemon.log file is about 21megas, /var/log/kern.log : 3
> >megas, /var/log/m
Are you letting your machine run overnite? The stock setup has a log
ratation that runs sometime in the early morning...
brian:)
***
At 06:58 PM 2/26/01 +0100, you wrote:
>Hello,
>How do you do to keep the size of the log files to a "normal" size ?
>Do you ru
John Aldrich <[EMAIL PROTECTED]> said:
> On Mon, 26 Feb 2001, you wrote:
> > Check out your logrotate setup. YOu might need to add "daemon.log" to the
> > logs that get rotated.
> >
> >
> Strange... I don't have a "daemon.log." *shrug*
Nor do I, but the original message mentioned "daemon.log"
On Mon, 26 Feb 2001, you wrote:
> Check out your logrotate setup. YOu might need to add "daemon.log" to the
> logs that get rotated.
>
>
Strange... I don't have a "daemon.log." *shrug*
John
___
Redhat-list mailing list
[EMAIL PROTECTED]
htt
Check out your logrotate setup. YOu might need to add "daemon.log" to the
logs that get rotated.
On Mon, 26 Feb 2001, Francois Massonneau wrote:
> Hello,
> How do you do to keep the size of the log files to a "normal" size ?
> Do you run a script, ??
> The /
On Mon, 26 Feb 2001, Francois Massonneau wrote:
> Hello,
> How do you do to keep the size of the log files to a "normal" size ?
> Do you run a script, ??
> The /var/log/daemon.log file is about 21megas, /var/log/kern.log : 3
> megas, /var/log/messages : 35 megas, /
Hello,
How do you do to keep the size of the log files to a "normal" size ?
Do you run a script, ??
The /var/log/daemon.log file is about 21megas, /var/log/kern.log : 3
megas, /var/log/messages : 35 megas, /var/log/syslog : 35 megas,
/var/log/wtmp: 5 megas.
Thank you
On Mon, 19 Feb 2001, Mark Lo wrote:
> Hi,
>
> What is the meaning of the following log files: especially for ns_forw
> and ns_resp !!!
>
>
> Feb 17 11:55:30 dns1 named[712]: ns_forw: sendto([198.41.0.4].53):
> Operation not permitted
>
> Feb 17 11:56:18 dn
Hi,
What is the meaning of the following log files: especially for ns_forw
and ns_resp !!!
Feb 17 11:55:30 dns1 named[712]: ns_forw: sendto([198.41.0.4].53):
Operation not permitted
Feb 17 11:56:18 dns1 named[712]: ns_resp: sendto([208.206.240.5].53):
Operation not permitted
Thank
Silviu Cojocaru wrote:
> > Stop sending HTML messages to the list.
>
> Oh yeah that helps... My good man if the HTML bothers you, filter it out.
> That should help.
Yeah, it was filtered. The response you saw was from my procmail
recipe. I don't get any HTMl mail (except those I actual
On Sun, 18 Feb 2001, Silviu Cojocaru wrote:
> On Sun, 18 Feb 2001, Ashley M. Kirchner wrote:
>
> > Stop sending HTML messages to the list.
>
> Oh yeah that helps... My good man if the HTML bothers you, filter it out.
> That should help.
>
> Have a peaceful life.
>
>
That is what I do now. So
Silviu,
Even though Ashleys comment was short and could be interpreted as harsh,
it was still indirectly very helpful for you. I'll explain how:
You said: "...if the HTML bothers you, filter it out."
You'd be surprised if you knew how many people on this list actually do
exactly that. If you se
On Sun, 18 Feb 2001, Ashley M. Kirchner wrote:
> Stop sending HTML messages to the list.
Oh yeah that helps... My good man if the HTML bothers you, filter it out.
That should help.
Have a peaceful life.
--
Microsoft Windows(tm). A thirty-two bit extension and graphical shell to
a sixteen
Mark Lo wrote:
> Hi, What is the meaning of the following log files: especially
> for ns_forw and ns_resp !!! Feb 17 11:55:30 dns1 named[712]: ns_forw:
> sendto([198.41.0.4].53): Operation not permitted
> Feb 17 11:56:18 dns1 named[712]: ns_resp: sendto([208.206.240.5].53):
>
Hi,
What is the meaning of the
following log files: especially for ns_forw and ns_resp !!!
Feb 17 11:55:30 dns1 named[712]: ns_forw:
sendto([198.41.0.4].53): Operation not permittedFeb 17 11:56:18 dns1
named[712]: ns_resp: sendto([208.206.240.5].53): Operation not
permitted
Try asking without the HTML.
___
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
Hi,
What is the meaning of the
following log files: especially for ns_forw and ns_resp !!!
Feb 17 11:55:30 dns1 named[712]: ns_forw:
sendto([198.41.0.4].53): Operation not permittedFeb 17 11:56:18 dns1
named[712]: ns_resp: sendto([208.206.240.5].53): Operation not
permitted
I believe that is logrotate that is doing it. Do a man logrotate and read
about it.
Jeff
--
Jeff Grossman ([EMAIL PROTECTED])
> From: "Jeremy Russell" <[EMAIL PROTECTED]>
> Reply-To: [EMAIL PROTECTED]
> Date: Thu, 5 Oct 2000 11:45:02 +0800
> To: <[EMAIL P
On Wed, 04 Oct 2000 23:45 Jeremy Russell wrote:
>Can somebody please tell me how to turn off all Log File auto archiving?
>ie I don't want the system to generate its own archive files like log.1
>etc... Including on startup.
Look in /etc/cron.daily/ for a logwatch entry.
--
Anthony E. Greene <
syslog restart. But
this was Red Hat 4.2. Someone else may be able to help you with the log
restart on startup.
Hope this helps,
Eddie Strohmier
- Original Message -
From: "Jeremy Russell" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, October 04, 2000
Hi,
Can somebody please tell me how to turn off all Log File auto archiving?
ie I don't want the system to generate its own archive files like log.1
etc... Including on startup.
Thanks
Jeremy
--
Jeremy Russell
Technical Servic
If someone is tyring to log in as root you can find out by
tail -f /var/log/messages
Hope that mitght help.
On Fri, 26 May 2000, UK Jaiswal wrote:
> Hello Friends,
>
> Could somebody pls tell me in detail which log files to check so that I
> know if somebody had been trying to
Hello Friends,
>
> Could somebody pls tell me in detail which log files to check so that I
> know if somebody had been trying to hack into my system and/or scanning
> my ports using nmap etc..
>
> Thankyou.
> Uk
--
pgp = Pretty Good Privacy. To get my public pgp key, send an e-m
On Fri, May 26, 2000 at 09:44:45AM +0530, UK Jaiswal wrote:
> Hello Friends,
>
> Could somebody pls tell me in detail which log files to check so that I
> know if somebody had been trying to hack into my system and/or scanning
> my ports using nmap etc..
>
> Thankyou.
&g
Hello Friends,
Could somebody pls tell me in detail which log files to check so that I
know if somebody had been trying to hack into my system and/or scanning
my ports using nmap etc..
Thankyou.
Uk
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
On Wed, May 17, 2000 at 03:06:45PM +1000, Dan Horth wrote:
> not much to add - how do I find out what this means?
>
> tia. dan
>
> May 16 21:03:05 klopf kernel: set_rtc_mmss: can't update from 58 to 3
> May 16 21:04:06 klopf kernel: set_rtc_mmss: can't update from 59 to 4
Try the linux kernel m
not much to add - how do I find out what this means?
tia. dan
May 16 21:03:05 klopf kernel: set_rtc_mmss: can't update from 58 to 3
May 16 21:04:06 klopf kernel: set_rtc_mmss: can't update from 59 to 4
--
---
Nitr
I need to log the trafic that comes in throught he ports 80 and 7500 (and
others in the future). How is this done? I can't use TCPdump, because it puts
the eth0 in promiscous mode, and I would have problems with the net admins
here.
TIA
--
"And I'm happy, because you make me feel good,
On Mon, 7 Feb 2000, Martin A. Marques wrote:
> I need to log the trafic that comes in throught he ports 80 and 7500 (and
> others in the future). How is this done? I can't use TCPdump, because it puts
> the eth0 in promiscous mode, and I would have problems with the net admins
> here. ^
On Mon, Feb 07, 2000 at 06:09:54PM -0300, Martin A. Marques wrote:
> I need to log the trafic that comes in throught he ports 80 and 7500
> (and others in the future). How is this done? I can't use TCPdump,
> because it puts the eth0 in promiscous mode, and I would have
> problems with the net adm
Srilatha Ramachandran-CSR041 <[EMAIL PROTECTED]>
> > Subject: Out of Office AutoReply: questions about log files
> > Date: Thu, 11 Nov 1999 21:42:32 +0800
> > -
> > I will be away from office starting Oct' 21st. For anything requiring
> > im
please remove this person from the redhat list.
I sent a message to [EMAIL PROTECTED] and received this response!
thanks
matt
Forwarded Message:
> To: [EMAIL PROTECTED]
> From: Srilatha Ramachandran-CSR041 <[EMAIL PROTECTED]>
> Subject: Out of Office AutoReply: questions about l
What does this mean?
stream_getlen([0.0.0.0].17949): Network is unreachable: 1 Time(s)
stream_getlen([0.0.0.0].18970): Network is unreachable: 1 Time(s)
stream_getlen([12.140.71.0].17920): Network is unreachable: 3 Time(s)
stream_getlen([12.204.243.0].5120): Network is unreachable:
gulja <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
Date: Wednesday, April 22, 1998 9:32 PM
Subject: Log Files
>I just noticed that my log files are getting pretty large. The
>/var/log/messages is 7MB and one called /var/log/cron is about 11MB. Is
>there a way t
my default crontab file had examples on trimming file sizes.
Personally we zip up the files at the end of each month and stop the syslog
program and then restart it.
Randy
At 07:54 AM 4/22/98 -0500, you wrote:
>I just noticed that my log files are getting pretty large. The
>/v
I just noticed that my log files are getting pretty large. The
/var/log/messages is 7MB and one called /var/log/cron is about 11MB. Is
there a way that I can clear these? I supposed just deleting them would be
a bad idea.
Thanks for any advice,
Michael Segulja
[EMAIL PROTECTED]
application
've _NEVER_ had
anything like this happen on my Linux machines, so this strikes me as
being peculiar. I don't believe it is an indication of a bad sector on
the hard drive (I would expect that the kernel would report data read
errors instead). Since these problems are proliferating in the lo
53 matches
Mail list logo