Never been to TextSnippets before?

Snippets is a public source code repository. Easily build up your personal collection of code snippets, categorize them with tags / keywords, and share them with the world (or not, you can keep them private!)

« Newer Snippets
Older Snippets »
2 total  XML / RSS feed 

Rolling Apache Logfiles

This is a little snippet I whipped up long ago to roll our logs, feel free to use...

#!/bin/sh

/usr/bin/grep CustomLog /usr/local/etc/apache2/httpd.conf |/usr/bin/grep -v \#|/usr/bin/awk '{print $2}'|/usr/bin/sort|/usr/bin/uniq|/usr/bin/grep -v /var/log > logfiles
/usr/bin/grep ErrorLog /usr/local/etc/apache2/httpd.conf |/usr/bin/grep -v \#|/usr/bin/awk '{print $2}'|/usr/bin/sort|/usr/bin/uniq|/usr/bin/grep -v /var/log >> logfiles
/usr/local/bin/weblog_rotate.pl --loglist logfiles --touchlog --restart_cmd "/usr/local/etc/rc.d/apache2.sh restart" --compress --days 120


The weblog_rotate.pl is a script from Uthe Urchin folk, available at http://download.urchin.com/support/weblog_rotate.pl
to apache log urchin rotate by ryan on Jul 02, 2006

Mod_security audit_log analysis

egrep 'Host:'  audit_log | sort | uniq -c | sort -rn | sed "s/mod_security-message\: Access denied with code 412\. //g" > 



egrep 'mod_security-message'  audit_log | sort | uniq -c | sort -rn  | mod_security-message-sort.txt



egrep "^HTTP/" audit_log | sed  "s/HTTP\/[01].[019] //g" | sort | uniq > HTTPcodes-audit.txt


Check out what's being used in the access_log headers

cat httpd-access.log | awk '{print $7}' | sort |  uniq -c | sort -rn | less
to mod_security log analysis by jason on May 26, 2005
« Newer Snippets
Older Snippets »
2 total  XML / RSS feed