Linux under/var/log/btmp file:Today, check the server, found that the/var/log/btmp log file is relatively large, search, this file is log error logging, that is, there are many people trying to log into the SSH service using a password dictionary, this log needs to be opened using the LASTB program.1, Firewall shield malicious login IP:(through this file can find malicious IP always try to log in)Iptables-a input-i eth0-s *.*.*. 0/ -j DROP2. View the
=" Wkiol1aln57i4tujaactxj2dngm509.png "/>Then connect, will appear need to enter the previous set of passphrase, entered after the successful landing650) this.width=650; "src=" Http://s2.51cto.com/wyfs02/M00/79/38/wKiom1aLn7OwPC08AAA5l72XrCM300.png "title=" 13.png "alt=" Wkiom1aln7owpc08aaa5l72xrcm300.png "/>650) this.width=650; "src=" Http://s5.51cto.com/wyfs02/M01/79/37/wKioL1aLn-viPf7TAAFTksx3faI604.png "title=" 14.png "alt=" Wkiol1aln-vipf7taaftksx3fai604.png "/>This article is from the "870
Tags: intrusion analysis cloud security SSH logSSH Login Status Analysis1.wtmp Loglastlast -x -F2. View Online User status(1) The W command displays a list of users who have logged in to the system and displays the instructions that the user is executing. The Execute W command alone displays all users, and you can also specify the user name to display information about only one user.(2) Who am I displays your export IP address, which is the source IP for SSH connectionwho am iroot pts/0
CatTail-fLog file description
/var/log/message system startup information and error log, which is one of the most commonly used logs in red Hat Linux
/var/log/secure Security-related log information
/var/log/maillog message-related log information
/var/log/cron log information related to timed tasks
/var/log/spooler log information related to UUCP and news devices
/var/log/boot.
CatTail-fLog file description
/var/log/message system startup information and error log, which is one of the most commonly used logs in red Hat Linux
/var/log/secure Security-related log information
/var/log/maillog message-related log information
/var/log/cron log information related to timed tasks
/var/log/spooler log information related to UUCP and news devices
/var/log/boot.
recorded in the log;[[emailprotected] ~]# Head-n5/var/log/securejan 21:25:38 shu-test polkitd[520]: Registered Authentication Agen T for unix-process:3868:852626 (System bus name:1.59 [/usr/bin/pkttyagent--notify-fd 5--fallback], object Path/org/fre Edesktop/policykit1/authenticationagent, Locale zh_cn. UTF-8) Jan 21:25:38 shu-test polkitd[520]: Unregistered authentication Agent for unix-process:3868:852626 (System bus NA me:1.59, Object path/org/freedesktop/policykit1/authenticationagent, Loca
In Linux, we can use crontab to regularly move access. log to the backup directory. At the same time, we can signal USR1 to the nginx main process to generate a new log file. Before writing the script, make the following assumptions: the log file is: usrlocalnginxlogsaccess. lognginx main process id is saved in the file: usrlocaln
In Linux, we can useCrontab, Regularly move access. log to the backup directo
Linux is a system that automatically generates files, such as logs, emails, and backups. Although hard disks are cheap now, we can have a lot of hard disk space to waste these files, so that the system can clean up unnecessary files at regular intervals. You don't have to worry about whether you need to clear logs every day, and you don't need to receive alarm te
Ibmjdkgenerate heapdumplog in linux. the nearest server is the slave machine, and log files such as .phd and javacore...txt will be generated at the same time. It indicates that the server is down due to OOM or other reasons. This can be obtained only when the server is down... the Apache dump log generated by ibm jdk in linux is the latest server. log files such as .phdand javacore...txt will be generated
CatTail-fLog file description/var/log/message system startup information and error log, which is one of the most commonly used logs in red Hat Linux/var/log/secure Security-related log information/var/log/maillog message-related log information/var/log/cron log information related to timed tasks/var/log/spooler log information related to UUCP and news devices/var/log/boot.log Daemon starts and stops related
left after cuttingDateext: Name by logSystem log files
/var/log/messages Core System log files, if a service does not have a log defined, the log generated by the service will be in this file, which is archived once a week.Its filing with the Bureau/etc/logratate.conf to control. This log file is generated by the syslogd daemon, and if this service is stopped, the system does not generate the log.
/var/log/wtmp: Used to view user login history, but cannot be viewed directly with ca
!------------------------------------------The echo command in Linux is used to display a section of characters on the standard output, such as:echo "The echo command test!"This will output "the echo command test!." This line of text!echo "The echo command test!" >a.shThis will output "the echo command test!" in the a.sh file. This line of text!The general format of the command is: Echo [-n] string where option n means that the output text is not wrap
Common system logs under Linux are usually placed in the/var/log/directory, the following is a common system log in this directory:
Log name
Description
Dmesg
Core Boot Log
Messages
System error Log
Maillog
Mail system Log
Boot.log
System Boot Process log
Cron
Record Daemon Derivation subroutine
Reproduced in: http://mushme.iteye.com/blog/1001478.Cattail-fLog file description/var/log/message system startup information and error log, which is one of the most commonly used logs in red Hat Linux/var/log/secure Security-related log information/var/log/maillog message-related log information/var/log/cron log information related to timed tasks/var/log/spooler log information related to UUCP and news devi
The company uses FTP to receive the customer's EDI order. Recently, the customer said that the order has been sent to us through FTP a long time ago. Why haven't it been delivered yet, but after repeated checks, the order was not found on FTP, but the customer insisted that the order had been uploaded. It seems that only the operation logs on FTP could be viewed to solve the dispute, and data could be used to speak.
The company's FTP is built based on
Zookeeper startup: Execute sh tomcat/bin/startup. sh stop: Execute sh tomcat/bin/shutdown. sh script command view: Execute ps-ef | grep tomcat to output the following *** 5144... Wait. Bootstrap start indicates that tomcat has been started normally, and the process ID pid = 5144 is set to 5144.Kill: kill-9 5144---------------------- View tomcat running logs in real time in linux -------------------------
In linux, use Xshell to view tomcat real-time logs with Chinese garbled characters,
When you use Xshell to view tomcat real-time logs, Chinese characters are garbled, but the Chinese characters in the log files are not garbled. There may be two reasons. The i18n of the system may not support Chinese characters, or the Xshell encoding format does not support Chin
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.