Extract IP Addresses From Apache Logs
Sep 18, 2007How can I extract a list of visitor ip addresses from apache logs for a cpanel account?
are there any tools that will do a whois lookup for all the IP's?
ADVERTISEMENT
Private (local) IP Addresses Showing Up In My Logs
Mar 28, 2007I just discovered this completely by accident on my new vps
visits (via apache) from 10.16.x.x and 10.28.x.x
These aren't backups but actual website visits.
What on earth is going on? Is my host browsing my website though their network?
Their behavior seems harmless but I just want to make sure this is not a security issue with a neighbor somehow doing something.
Apache Logs Error
May 29, 2009since i take server i got a lot of errors on my apche logs when i post this command on my shell:-
Code:
tail -f /usr/local/apache/logs/error_log
will coming a lot & fast error and not stop until i stop the apache:-
Code:
[Fri May 29 11:37:52 2009] [error] [client 77.167.228.165] File does not exist: /usr/local/apache/htdocs/40E80014354C4C30365047322020202020202020202020206C0000004D6600000001760000005CEB000530E1E8EEF4
[Fri May 29 11:37:52 2009] [error] [client 89.215.36.123] File does not exist: /usr/local/apache/htdocs/40E80014202020202020465032443031324B3842364842456C000000446600000001760000005CEB000530797F848A
[Fri May 29 11:37:52 2009] [error] [client 93.185.179.132] File does not exist: /usr/local/apache/htdocs/40E800006C000001596600000001760000005CEB0005307587A8B4
every thing is ok but i need to remove this error and i can't under stand from where comming ! "/usr/local/apache/htdocs"
Huge Apache Logs
Feb 3, 2008I'm sure this question has been asked before, but I'm looking for a nice and simply way of breaking up log files into smaller chunks.
I've been running apache2 on a VPS for the past few months and one of the access.log files is now 700mb big... bit of a waste of space. I'm currently just doing:
CustomLog /var/www/logs/domain.com/access.log combined
ErrorLog /var/www/logs/domain.com/error.log
In my apache config.
Is there any easy way of telling apache to just keep the last week or months worth of logs?
Configure Web Logs In Apache
Apr 26, 2008I use linux server with Cpanel control panel.
default default apache logs folder is in /usr/local/apache/logs/error_log
I want to monitor errors . How can I have an error log file for each individual domain?
Worrying Apache Logs Showing 401s
Jun 3, 2008I've just taken a look at the raw apache logs on my cpanel machine here:-
/usr/local/cpanel/logs/access_log
And there are many hundreds of these:-
127.0.0.1 - - [06/03/2008:21:55:22 -0000] "GET / HTTP/1." 401 0 "" ""
127.0.0.1 - - [06/03/2008:21:55:22 -0000] "GET / HTTP/1." 401 0 "" ""
127.0.0.1 - - [06/03/2008:22:03:42 -0000] "GET / HTTP/1." 401 0 "" ""
127.0.0.1 - - [06/03/2008:22:03:42 -0000] "GET / HTTP/1." 401 0 "" ""
127.0.0.1 - - [06/03/2008:22:12:02 -0000] "GET / HTTP/1." 401 0 "" ""
127.0.0.1 - - [06/03/2008:22:12:02 -0000] "GET / HTTP/1." 401 0 "" ""
127.0.0.1 - - [06/03/2008:22:20:22 -0000] "GET / HTTP/1." 401 0 "" ""
127.0.0.1 - - [06/03/2008:22:20:22 -0000] "GET / HTTP/1." 401 0 "" ""
what is happening to my server to generate these log entries?
Apache Logs - Viewing POST Data
Mar 20, 2007I suspect that somebody is trying to do SQL injections on one of my websites. Is the POST information that is send using forms logged anywhere so I can read it in the same way I can read the GET requests in Apache logs?
View 6 Replies View RelatedApache :: Preferred Method For Centralizing Logs
Mar 23, 2015Which method do you prefer for centralizing your logs: file monitoring or Pipe to Logger?
View 4 Replies View RelatedApache :: Unable To Open Logs On Restart
Jan 19, 2015Sometimes when I try to restart Apache 2.4 using the supplied ApacheMonitor.exe I get this error. Then, I have to "taskkill /f /im httpd.exe" or wait like 30 sec before trying to start Apache again.
View 1 Replies View RelatedApache :: How To Create Rotated Logs For Every Periodic Time
Aug 26, 2014I have configure my Apache to create rotated logs for every periodic time. It worked fine with my local PC, but when it is being configured on to a server system, the actual error.log file is not being update, only the rotated logs are created. If i remove the Error Log command from httpd.conf for Error Log Rotation, again it works fine as usual.
View 1 Replies View RelatedPlesk 11.x / Linux :: Disable Apache Access Logs
Sep 27, 2014I need to disable apache access logs. I commented out the access log path in /etc/httpd/conf/httpd.conf and restarted the server but it's still logging access.
View 3 Replies View RelatedApache Logs :: Directory Index Forbidden By Options Directive
Dec 19, 2008i have apache 2 and centos with plesk . when i see my apache error log it shows me :
[Fri Dec 19 05:56:35 2008] [error] [client ::1] Directory index forbidden by Options directive: /var/
www/html/
How To Configure Apache To Update Access Logs Files In Real Time
Jul 19, 2014I'm trying to configure an custom access_log file for an custom file called "extra.php"
How I can make an log file that's log only "extra.php" ....
IIS And Apache Using Different IP Addresses
Jun 5, 2008I've set up IIS and Apache using different IP's on our development server and everything seems to run ok even though they're both using port 80.
Does anybody know of any conflicts or potential problems this can cause, I'm just worried something will go wrong once/if I set this up on the our production server?
How To Configure Apache Logs For Virtual Host (copy Log File To Homedir Of User )
Jul 19, 2014I'm trying to configure Apache logs to split logs files for every virtual host on the server
for example: {site1 .com} => copy access_log to /home/site1/public_html/logs {site2 .com} => copy access_log to /home/site2/public_html/logs .. {site3 .com} => copy access_log to /home/site3/public_html/logs
i want to also to make sure is the logs files updated in the real time
operating system is CentOs6, with Apache and cPanel
How Can I Extract Certain File From Tar.gz
Apr 25, 2008I have a huge backup file in tar.gz format.
now I need a file from this backup file,
for example I need extract only index.php located in homedir/public_html on tar.gz file.
Mass Extract .tar Files
Sep 17, 2008What command do I use to mass extract a bunch of .tar files? I have a directory with about 60+ .tar files that I want to extract at the same time instead of doing it one by one.
View 4 Replies View RelatedExtract Domain Names From .txt File
Jan 9, 2008a command to extract the domain names from the following .txt file.
sss.com 59 01/09/2008 13:45
edd.com 59 01/09/2008 13:45
i want to extact the domains sss.com and edd.com in another txt file.
Plesk And Mailman -- How To Extract Subscribers
Apr 3, 2007I used to have a server under Plesk. I don't have the server anymore, but I kept all the files from the server (not a plesk dump). Where do I find the subscribers database and how can I extract it?
View 0 Replies View RelatedExtract Part Rars Using Unrar On Centos4?
Sep 27, 2007Is it possible to extract part rars using unrar (or other programs) on centos4?
If so, how and what command to use?
Access Logs And Errors Logs
Jul 25, 2007is it possiable to delete these files in the server access_logs and errors_logs
View 1 Replies View RelatedVPS Top Logs
May 15, 2009The vps has
256MB(512 burstable) of memory
10GB of HardDisk space
Using Lighttpd, PHP and MySQL
ControlPanel is LXAdmin
top - 05:59:24 up 36 min, 1 user, load average: 0.42, 0.60, 0.62
Tasks: 31 total, 1 running, 29 sleeping, 0 stopped, 1 zombie
Cpu(s): 0.0%us, 0.0%sy, 0.0%ni,100.0%id, 0.0%wa, 0.0%hi, 0.0%si, 0.0%st
Mem: 1048576k total, 55216k used, 993360k free, 0k buffers
Swap: 0k total, 0k used, 0k free, 0k cached
PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
1 root 15 0 1964 660 568 S 0 0.1 0:00.46 init
3922 root 15 0 7824 2104 1720 S 0 0.2 0:00.01 sshd
9868 root 15 0 2352 1272 1064 S 0 0.1 0:00.00 bash
11693 root 18 0 2104 1020 820 R 0 0.1 0:00.10 top
17861 root 16 0 1632 620 520 S 0 0.1 0:00.00 syslogd
17918 dbus 25 0 2636 468 328 S 0 0.0 0:00.00 dbus-daemon
17955 root 18 0 5116 956 644 S 0 0.1 0:00.00 sshd
18093 tinydns 18 0 1544 304 252 S 0 0.0 0:00.00 tinydns
18106 root 23 0 1596 372 308 S 0 0.0 0:00.00 tcpserver
18131 apache 18 0 8452 4276 812 S 0 0.4 0:02.27 lighttpd
18132 admin 15 0 38704 24m 6652 S 0 2.4 2:58.37 php-cgi
18224 addons 20 0 22024 8456 4572 S 0 0.8 0:00.01 php-cgi
18278 root 15 0 2348 1112 968 S 0 0.1 0:00.00 sh
19519 root 15 0 4032 1432 1172 S 0 0.1 0:00.00 lxadmin.exe
19557 root 17 0 2608 884 712 S 0 0.1 0:00.00 xinetd
19594 lxlabs 18 0 5364 2220 1160 S 0 0.2 0:00.13 lxadmin.httpd
19879 root 18 0 2344 1124 964 S 0 0.1 0:00.00 mysqld_safe
19921 mysql 15 0 13688 5240 3904 S 0 0.5 0:17.51 mysqld
20250 qmails 15 0 1804 476 372 S 0 0.0 0:00.00 qmail-send
20256 qmaill 18 0 1564 472 404 S 0 0.0 0:00.00 splogger
20260 root 22 0 1576 344 268 S 0 0.0 0:00.00 qmail-lspawn
20261 qmailr 15 0 1572 372 296 S 0 0.0 0:00.00 qmail-rspawn
20275 qmailq 18 0 1560 352 284 S 0 0.0 0:00.00 qmail-clean
21824 root 18 0 6200 1296 960 S 0 0.1 0:00.00 authdaemond
21828 root 15 0 1596 376 312 S 0 0.0 0:00.00 tcpserver
21834 root 25 0 1592 368 308 S 0 0.0 0:00.00 tcpserver
21838 root 18 0 6200 460 124 S 0 0.0 0:00.00 authdaemond
21842 root 18 0 1592 372 312 S 0 0.0 0:00.00 tcpserver
21861 root 25 0 1592 368 308 S 0 0.0 0:00.00 tcpserver
21890 root 18 0 3184 1108 576 S 0 0.1 0:00.00 crond
Apf Logs
Jan 16, 2008I just got an email from my vps saying that a BFD attack was stopped and the ip was banned after 40 failed attempts of logging into ftpdpro. I logged in and started looking around and I noticed that in my apf log file there was:
Code:
Jan 15 00:54:07 s1 apf(22290): {glob} firewall initalized
Jan 15 00:54:07 s1 apf(22290): {glob} fast load snapshot saved
Jan 15 00:58:06 s1 apf(32425): {glob} uptime less than 5 minutes, going full load
Jan 15 00:58:06 s1 apf(32425): {glob} activating firewall
Jan 15 00:58:06 s1 apf(32500): {glob} unable to load iptables module (ip_tables), aborting.
Jan 15 00:58:06 s1 apf(32425): {glob} firewall initalized
Jan 15 00:58:06 s1 apf(32425): {glob} fast load snapshot saved
Jan 15 01:00:04 s1 apf(3950): {glob} uptime less than 5 minutes, going full load
My concern is that it says "unable to load iptables module (ip_tables), aborting.
Cpu Logs
Dec 7, 2008is there anything that logs server load and what processes have caused any spikes?
one of my servers keeps going down under high load, well it seems to lock up and the noc has to reboot, but ofcourse the techs can't diagnose a problem after as it runs fine and when i send them a ticket it's because the server can't be reached at all and then they can't diagnose it either
Never Before Seen In My Httpd Logs
Apr 16, 2009I moved a domain of mine from one of my CentOS servers on my SoHo LAN, to one of my CentOS cPanel/WHM servers. Since the SoHo machine had been handling this domain's mail for almost 2 years (300+ mb of mail), I decided to continue running it from home.
The Apache daemon was stopped on said SoHo box following DNS propagation to the cPanel machine, but Apache was automatically started again after having to reboot the SoHo server. Before I got a chance to kill Apache, I got some weird entries showin' up in the access_logs.
www.####.com ip54520165.adsl-surfen.hetnet.nl - - [15/Apr/2009:23:30:20 -0700] "CONNECT 205.188.179.233:443 HTTP/1.0" 302 286 "-" "-"
www.####.com ip54520165.adsl-surfen.hetnet.nl - - [15/Apr/2009:23:37:05 -0700] "CONNECT 205.188.176.230:443 HTTP/1.0" 302 286 "-" "-"
www.####.com ip54520165.adsl-surfen.hetnet.nl - - [15/Apr/2009:23:43:30 -0700] "CONNECT 205.188.153.99:443 HTTP/1.0" 302 285 "-" "-"
www.####.com ip54520165.adsl-surfen.hetnet.nl - - [16/Apr/2009:00:10:01 -0700] "CONNECT 205.188.153.100:443 HTTP/1.0" 302 286 "-" "-"
I ask simply because I don't recall seeing a "CONNECT" entry in my logs before, and I've been at this for awhile. That or I've just not paid any attention. And what's with the SSL port?
I guess I'm just a little confused as to what was trying to be accomplished here...it hasn't returned since.