LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 10-29-2007, 11:30 AM   #1
taydu3000
LQ Newbie
 
Registered: Oct 2003
Posts: 28

Rep: Reputation: 15
reading logs


Hello all,

I'm new to linux so please bear with me.

I have a dedicate Centos 4.5 server and want to know how to read log to see if anyway try to gain access to the server, and hopefully can prevent it before for it get worst.
 
Old 10-29-2007, 11:42 AM   #2
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
You can look at a log in "real-time" with the tail command. Example:
Code:
tail -f /var/log/syslog
You can also use the ubiquitous text tools such as grep, awk, etc. to find specific lines you are interested in. That said, there's only so much you as a human can do by looking at log files. You will typcially be much more productive by having the computer look at them for you, and having it report to you on its findings. It can also take certain actions when it finds certain things in the logs. There's many tools that do this, here's two examples: Logwatch and Swatch. If you want more specific help regarding intrusion attempt detection by looking at log files, you'll need to specify which program's logs you are referring to.

Last edited by win32sux; 10-29-2007 at 12:05 PM.
 
Old 10-29-2007, 12:34 PM   #3
taydu3000
LQ Newbie
 
Registered: Oct 2003
Posts: 28

Original Poster
Rep: Reputation: 15
thank for your reply.

I tried:

Quote:
tail -f /var/log/syslog
but got an error

reading: no such file or directory tatil: no file remaining

there aren't log apps on the server right now. I want to instal logwatch on centos. Do you have any tutorial guide to do this ??? I google a while but nothing help came up.

thanks
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Reading apache error logs from a c program psandeepnair1985 Programming 1 05-21-2007 01:30 AM
Firefox logs user out? Where are error logs? case1984 Linux - General 0 10-09-2004 02:22 PM
Reading SNORT Logs WarlockofVirgo Linux - Networking 1 08-13-2004 09:24 AM
Separate firewall logs and general logs dominant Linux - General 3 04-20-2004 01:26 AM
Reading Snort logs bigdogg Linux - Software 0 10-27-2003 03:22 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 02:43 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration