All Questions
82
questions with no upvoted or accepted answers
5
votes
0
answers
6k
views
How do I get reasonable server-side NFS log output?
I was experiencing some problems with nfs-kernel-server on Debian stretch which I could solve by luck. Still, I learned that the log output was not of much help of me. I would like to change that to ...
4
votes
0
answers
24k
views
Linux log files - why did my server go down?
When I got home, my server was hung in the BIOS boot process - the system had restarted for some reason.
The last log entry in /var/log/messages relates a DHCP renewal request - there's nothing ...
3
votes
0
answers
1k
views
Is there a tool like `cronolog` or `rotatelogs`, but also with compression and removal like in `logrotate`?
I want simple piped logging without config files or system-wide rules for periodic command execution.
Are there any projects that allows to do that? Expecting something like this:
./...
2
votes
0
answers
218
views
Log file name based on application with syslog-ng
I'm using syslog-ng and currently my config only separates log files based on ip address and facility:
source s_network_udp {
syslog(transport(udp) port(514));
};
destination d_local {
file("...
2
votes
1
answer
2k
views
Is there any way to delete logs of a specific systemd service in linux?
After searching a bit, all I got is journalctl --vacuum-time.... However, this command doesn't delete service logs. So, how can I safely delete logs of a specific service from linux?
2
votes
0
answers
561
views
MacOS - How to change syslogd's log level for a specific process/program?
I am new to MacOS and I would like to get a better of view of what's going on with a system process when my computer is starting up. I can see in the log that a process is changing settings, but the ...
2
votes
0
answers
81
views
Old gdb cannot find out how to do logging
I'm running an obsolete Red Hat OS and debugging with the built-in gdb but I cannot figure out how to do logging.
I've tried:
set logging on
But get:
No symbol "logging" in current context
It ...
2
votes
2
answers
499
views
Is there a way to automatically get track of installed packages and dependencies?
There are packages I installed using 'apt-get install', that installed also all its dependencies. If I want to remove it after some time, I would remove its dependencies as well. Now I do not trust '...
2
votes
0
answers
541
views
My Dell laptop running Ubuntu Linux 11.10 hangs on reboot but not shutdown. How do I diagnose this?
My Dell laptop running Ubuntu Linux 11.10 hangs reliably while shutting down for a reboot, but when I shutdown, it will complete successfully. How do I diagnose this? I don't know what log files I ...
1
vote
2
answers
483
views
Continue ddrescue from a corrupted log file
I ran ddrescue a few days ago in my 180GB partition, but after 3 days (and 99.91 % rescue and in phase 3 the last time I check) the system frozen, so I power off the computer by keeping pressed the ...
1
vote
0
answers
313
views
ufw logs BLOCKS from 2 sites while BLOCK logging is completely disabled for ALL sites
Logging is enabled. Only allow rules are logged. The very last line of my firewall rules is:
Anywhere DENY Anywhere
No logging is asked for, however two IPs repeatedly show ...
1
vote
1
answer
8k
views
How to get “failed login attempts since the last successful login” count as a variable?
When I log in to a server I see:
Last failed login: Fri Jul 17 12:47:01 CEST 2020 from 111.222.333.444 on ssh:notty
There were 2713 failed login attempts since the last successful login.
Last login: ...
1
vote
0
answers
24
views
squid - logfile based on source
According to some googled documents, I am trying to set up per-host logfile to exclude some requests from access log, but to keep these requests in different logfile. My related config in squid.conf:
...
1
vote
0
answers
55
views
How to check for screen activation in system logs
I have a Debian 10 (Buster) installed, and I was wondering how to check in the system logs when the screen was activated.
The way I configured the OS is that I have turned off in the power manager ...
1
vote
0
answers
2k
views
How to find out what killed my desktop environment (and possibly X Server)?
I ran into a problem this morning. I have a computer that is used for machine learning and nothing else. I use python to run tensorflow to train some models that I made.
The problem is that I couldn'...
1
vote
1
answer
39
views
Check Mount Directory
I have raspberry pi and have microsd with raspbian from which the system is loading and the HDD on which I write logs. I encountered such a problem that sometimes the disk falls off and the logs begin ...
1
vote
0
answers
518
views
Reading log files using logstash which rotates every day
I am reading a log file using file input plugin in logstash and sending this logs to elastic search. Log file is rotated at every 00:00. When I rotate log file, the file is zipped and moved to a ...
1
vote
0
answers
568
views
Log correlation with syslog-ng patterndb
I'm trying to play with syslog-ng and patterndb and I am having trouble with log correlation.
The documentation on how to do it is here : https://www.syslog-ng.com/technical-documents/doc/syslog-ng-...
1
vote
1
answer
2k
views
Redirecting the output of service in Ubuntu to Log files
I am on Ubuntu 16.04 and deployed a service in /etc/systemd/system.
The service file booster.service contains
[Unit]
Description = booster
After = network.target
[Service]
ExecStart =/opt/tech/...
1
vote
0
answers
911
views
'su root' succeeded for root on /dev/??? - SunOS logging
I have a log like this in /var/log/authlog :
<date> <server> su: [ID 366847 auth.notice] 'su root' succeeded for root on /dev/???
and in /var/adm/sulog
SU 12/12 11:13 + ??? root-root
...
1
vote
1
answer
1k
views
Is there a way to send logs to a remote host in real time?
I've been experimenting with high-interaction honeypots lately. Unfortunately if an adversary achieves root access they could easily wipe the logfiles on a system, defeating one of the purposes of a ...
1
vote
0
answers
152
views
centos7 what is the best value of audit.rules
I am now suffered with audit : backlog limit exceeded.
I found some articles with similar situation and they said adjust audit log count with audit.rules.
Here is my audit.rules
## This file is ...
1
vote
0
answers
28
views
Identify event that stalled server with GPU-applications temporarily
I'm running 4 intensive applications (training of machine learning models on GPUs) that regularly prints information about how fast they're running on a Linux 14.04 machine. Strangely enough, the ...
1
vote
0
answers
505
views
Check to see if server is up
Create dir logs (for outputted logs)
Create a script IsTheServerUp.bash
Write a script to check if the server is up
Log(echo) the outcome to the file
Use curl command to check the server
Use ...
1
vote
1
answer
3k
views
How to make my Window system a Syslog server
I have my D-link router which can forward its logs to a syslog server. Now, I do not have any syslog server. Hence, I want to make my Windows machine a syslog server to get those logs from the D-link ...
1
vote
0
answers
345
views
How can I get exact same log file name in Rsyslog v-8
Previously I was using Rsyslog v-7.14 and having the template:
$template UDP-Logging, "/var/log/RemoteLogs/%HOSTNAME%/UDP-%PROGRAME%-%$now%.log"
if $fromhost-ip ! '127.0.0.1' then -?UDP-Logging
&...
1
vote
0
answers
534
views
Problems with the tomcat access-logs
I need your help.
I want to log the access on my Apache Tomcat webserver on SLES 12.
It is running and logging normally. But when I visit the site, tomcat is writing 8 lines into the ...
1
vote
0
answers
47
views
New Trisquel installation always at 100% CPU, log files grow very fast, graphical glitches, etc
About a week ago, I installed Trisquel on a rather old (2010-ish) computer, and ever since then there has been an issue which I had never found a solution for, but hesitated from asking for support ...
1
vote
0
answers
132
views
how to get this layout with multitail
I have a silly one for you
I know how to do this with multitail (multitail -s 2 -sn 1,2 A.log B.log C.log):
+-----------------------+------------+
| | |
| ...
1
vote
1
answer
1k
views
rsyslog.conf: kern.err /dev/console. Where do these messages go?
There is a commented line in rsyslog.conf:
#kern.* /dev/console
If I add this line to the configuration file:
kern.notice /dev/console
Where do these messages go?
If I run this ...
1
vote
0
answers
49
views
Evidence of Linux reinstallation
I know that the results of a system installation appear in /var/log/anaconda.log, however I am curious if this log will show any additional installations.
For example, if I have an existing Linux ...
1
vote
1
answer
37
views
Log Usage of Particular Programs
I'd like to be able to log the usage of certain programs on Linux systems. As an example, I'd like to know who's FTP'ing files out of the system or placing files in the FTP dropbox, and if possible ...
1
vote
1
answer
227
views
Log every operation of root user (and sudoers)
I want to log every operation of root on my server. This is useful for debugging, or for setting up another identical server, and so on. I am searching for a solution for either centos or debian. ...
1
vote
1
answer
992
views
Access denied error with svlogd
I've setup a debian wheezy server and I'm using runit to keep my services humming along. I've also configured svlogd, but that's where I'm getting problems. When the services start I run "ps aux" and ...
1
vote
1
answer
152
views
Linux SNMP logger software
I have an application running on an old version of Linux using snmpwalk to read data from an instrument. I am experiencing some problems with this instrument. Every once in a while I seem to get a ...
1
vote
1
answer
89
views
Logcheck: Any Shortcuts to Squelching The Spew?
I have logcheck running on my server, and it constantly e-mails me reams of warnings.
I go through and manually add the regular expressions, but it's getting tiresome quickly, and worse: I'm starting ...
1
vote
0
answers
45
views
How can I print individual characters on pre-desktop system log screen in linux at first log message?
I want customize the booting to display a message character by character in the system log display that appears before the desktop login. If I make my own kernel module to do the printing, how can I ...
1
vote
2
answers
621
views
Is there a open source monitoring package that monitors logs for specific string patterns?
In our current system, we are not effectively monitoring the logs for errors as most of the errors are not serious enough. I want to basically warn users on the important errors. I cannot touch the ...
1
vote
0
answers
14k
views
Check log messages for file system errors
Fedora 13
kernal 2.6.34.6-54.fc13.i686
HP Notebook dv6000 4 years old
I have been having a problem starting my notebook. I get the BIOS screen. But before I get to the GRUB loader menu option....
1
vote
2
answers
329
views
Ubuntu: Application history in gtkwm/gdm?
Is there some way I can track all applications that were opened by a user during a gnome session in ubuntu?
Do gdm/gtkwm keep a history of all applications that were opened in some log file?
1
vote
1
answer
178
views
couldn't parse date : nxlog
While debugging my log parsing in Nxlog, i got the below error
2019-03-31 01:57:31 DEBUG couldn't parse date: Mar 30, 2019 4:53:56 AM
I have used the below command to parse date :
Exec $time = ...
0
votes
0
answers
93
views
Omada Controller and rsyslog
I am totally new to rsyslog so please be gentle ;)
I have an Omada TP-Link controler, that manages all my clients AP across the region.
Everything works fine, I am trying to implement public Wi-Fi ...
0
votes
0
answers
51
views
TACACS+ accounting using linux client
Is it possible to log all commands executed in the Linux machine to a TACACS server?
0
votes
0
answers
793
views
How to configure rsyslog to use the imfile module?
I have Red Hat 9.2 with rsyslog v8.2102.0-113.el9_2.1.
I use default /etc/rsyslog.conf and a custom configuration called vums.conf located in /etc/rsyslog.d/.
module(load="imfile")
input(...
0
votes
0
answers
374
views
How to Forward /var/log/yum.log to Remote Logging Server using rsyslog.conf?
Gents,
I am trying to find a way to forward /var/log/yum.log towards Remote Logging Server using rsyslog.conf in my RHEL7. But Not happening.
I have tried this approach but no luck -
$InputFileName /...
0
votes
1
answer
309
views
Does Windows have something like journald on Linux?
I have a Windows 10 installed as main OS on a machine. When I installed it fresh it would boot in like 5 seconds, but as time passed and new updates got installed, the boot times became slower and ...
0
votes
0
answers
1k
views
How to list users logged via remote desktop(xrdp) and ssh on Ubuntu
I'm using some shared Ubuntu machine and using the who, w, last commands doesn't print any users just my own user. Issuing reboot print a list of users logged in via xrdp.
Is there a command that can ...
0
votes
0
answers
98
views
journalctl entries are logged using the same time, in 5minute intervals
I have a service which queries a database every second and print out results to console. When I look at journalctl I get a couple hundred lines that all have the same timestamp, and then the next ...
0
votes
1
answer
1k
views
Changing security levels of Fortigate logs?
Tech newbie here.
I want to send Fortigate logs to a syslog server. Previously, I was receiving way too many unnecessary firewall logs, 90% of them with a security level of "notice." I have ...
0
votes
2
answers
76
views
Prevent application (iscsiadm) logging to dmesg?
I have an issue where running sudo iscsiadm -m discovery -t st -p IP -l logs to dmesg across all terminals on the server.
The command is run from a java application, using:
Runtime.getRuntime()....