Logs on Amit Agarwal Linux Blog

Easily monitor and archive your system log reports.

Mon, 29 Jun 2015 01:15:56 +0000

If you want to monitor your server logs and also like them to be emailed then just Logwatch may not be sufficient. It sends you a mail but does not archive them, so head over to epylog

Name        : epylog

Arch        : noarch

Epoch       : 0

Version     : 1.0.7

Release     : 9.fc22

Size        : 151 k

Repo        : fedora

Summary     : New logs analyzer and parser

URL         : https://fedorahosted.org/epylog/

License     : GPLv2+

Description : Epylog is a new log notifier and parser which runs periodically out of

cron, looks at your logs, processes the entries in order to present

them in a more comprehensive format, and then provides you with the

output. It is written specifically with large network clusters in mind

where a lot of machines (around 50 and upwards) log to the same

loghost using syslog or syslog-ng.

To install :

colorize your logs

Wed, 14 Jan 2015 00:36:32 +0000

CCZE is a robust and modular log colorizer with plugins for apm, exim, fetchmail, httpd, postfix, procmail, squid, syslog, ulogd, vsftpd, xferlog, and more.

For installation

sudo yum install ccze

and to use it:

tail -f -n 50 /var/log/firewalld | ccze
#or better yet
cat  /var/log/firewalld | ccze|more

Quick tip on zipping logs in real time.

Wed, 13 Oct 2010 17:57:53 +0000

Sometimes, some small things that we don’t actually think can be useful are such useful. I faced this couple of days back when I was working on something and the amount of logs getting generated and the files getting rotated was too fast. If I had to use this for sometime, I needed some script, application or something to make sure that the logs are zipped every few seconds. Finding an application for this would take time and what good is bash if we need to find applications for this. So, a simple bash command did the trick. Most of us would know this but applying it and using it at the right time, was what saved my life. Thanks to bash. Here is the command:

List of commands you use most often

Sun, 25 Jul 2010 03:53:08 +0000

$ history | <a class="zem_slink" title="AWK" rel="homepage" href="http://cm.bell-labs.com/cm/cs/awkbook/index.html">awk '{a[$2]++}END{for(i in a){print a[i] " " i}}' | sort -rn | head > /tmp/cmds | <a class="zem_slink" title="Gnuplot" rel="homepage" href="http://www.gnuplot.info/">gnuplot -persist <(echo 'plot "/tmp/cmds" using 1:xticlabels(2) with boxes') Plot your most used commands with gnuplot.

<a href="http://www.commandlinefu.com/commands/view/5845/list-of-commands-you-use-most-often">View this command to comment, vote or add to favourites
<a href="http://feeds2.feedburner.com/commands/by/sthrs">View all commands by <a href="http://feeds2.feedburner.com/commands/by/sthrs">sthrs

by David Winterbottom (<a href="http://codeinthehole.com">codeinthehole.com)

concatenate compressed and uncompressed logs

Thu, 15 Jul 2010 02:10:28 +0000

<span style="font-size: x-large;"><a href="http://feedproxy.google.com/~r/Command-line-fu/~3/iwFUyltYgjM/concatenate-compressed-and-uncompressed-logs">concatenate compressed and uncompressed logs

$ find /var/log/apache2 -name 'access.loggz' -exec <a class="zem_slink freebase/guid/9202a8c04000641f800000000001abd9" title="Gzip" rel="homepage" href="http://www.gzip.org/">zcat {} ; -or -name 'access.log' -exec cat {} ; This command allows you to stream your log files, including gziped files, into one stream which can be piped to <a class="zem_slink freebase/guid/9202a8c04000641f800000000000584b" title="AWK" rel="homepage" href="http://cm.bell-labs.com/cm/cs/awkbook/index.html">awk or some other command for analysis.

Note: if your version of ’find’ supports it, use:

concatenate compressed and uncompressed logs

Mon, 21 Jun 2010 12:58:46 +0000

<span style="font-size: x-large;"><a href="http://feedproxy.google.com/~r/Command-line-fu/~3/iwFUyltYgjM/concatenate-compressed-and-uncompressed-logs">concatenate compressed and uncompressed logs

$ find /var/log/apache2 -name 'access.loggz' -exec <a class="zem_slink freebase/en/gzip" title="Gzip" rel="homepage" href="http://www.gzip.org/">zcat {} ; -or -name 'access.log' -exec cat {} ; This command allows you to stream your log files, including gziped files, into one stream which can be piped to <a class="zem_slink freebase/en/awk" title="AWK" rel="homepage" href="http://cm.bell-labs.com/cm/cs/awkbook/index.html">awk or some other command for analysis.

Note: if your version of ’find’ supports it, use:

Logwatch for Linux Systems.

Wed, 02 Jun 2010 01:53:36 +0000

On my personal <a class="zem_slink freebase/en/client" title="Client (computing)" rel="wikipedia" href="http://en.wikipedia.org/wiki/Client_%28computing%29">desktop at home, I like to see the <a class="zem_slink freebase/en/statistics" title="Statistics" rel="wikipedia" href="http://en.wikipedia.org/wiki/Statistics">statistics at least once a day, for what was installed, what was run with <a class="zem_slink freebase/en/sudo" title="Sudo" rel="homepage" href="http://www.sudo.ws/">sudo and other such details like <a class="zem_slink freebase/en/kernel" title="Kernel (computing)" rel="wikipedia" href="http://en.wikipedia.org/wiki/Kernel_%28computing%29">kernel errors.

Running this monotonously every day is quite boring, so comes to rescue is logwatch. I have <a class="zem_slink freebase/en/fedora" title="Fedora" rel="homepage" href="http://fedoraproject.org/">Fedora <a class="zem_slink freebase/en/installation" title="Installation (computer programs)" rel="wikipedia" href="http://en.wikipedia.org/wiki/Installation_%28computer_programs%29">installation so I will talk about the location with respect to that so for your distribution it might be a little different.