Watching logs with Logwatch

For monitoring your logs you can use logwatch, to install use this:

apt-get install logwatch

and if you want to change the config this:

nano /usr/share/logwatch/default.conf/logwatch.conf

to run use this :

logwatch

the result look like this :

 ################### Logwatch 7.4.0 (05/02/12) #################### 
        Processing Initiated: Sat Jan 17 12:09:14 2015
        Date Range Processed: yesterday
                              ( 2015-Jan-16 )
                              Period is day.
        Detail Level of Output: 0
        Type of Output/Format: stdout / text
        Logfiles for Host: XX
 ################################################################## 
 
 --------------------- httpd Begin ------------------------ 

 A total of 79 sites probed the server 
	XXXXXXXXX
	XXXXXXXXX
	XXXXXXXXX
	XXXXXXXXX
	XXXXXXXXX
	XXXXXXXXX
	XXXXXXXXX
	.....
 
 
    null HTTP Response 302 
 
 Requests with error response codes
    400 Bad Request
       /wp-admin/admin-ajax.php: 1 Time(s)
    404 Not Found
       /favicon.ico: 3 Time(s)
       /wp-admin/admin-ajax.php?action=getfile&/../../wp-config.php: 1 Time(s)
       /wp-admin/admin-ajax.php?action=revslider_ ... ./wp-config.php: 1 Time(s)
       /wp-content/plugins/wp-filemanager/incl/li ... action=download: 1 Time(s)
       /wp-content/themes/parallelus-mingle/frame ... ./wp-config.php: 1 Time(s)
       /wp-content/themes/parallelus-salutation/f ... ./wp-config.php: 1 Time(s)
    408 Request Timeout
       null: 117 Time(s)
 
 ---------------------- httpd End ------------------------- 

 
 --------------------- pam_unix Begin ------------------------ 

 su:
    Sessions Opened:
       test -> root: 1 Time(s)
 
 
 ---------------------- pam_unix End ------------------------- 



 
 --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ 

 Large Mailbox threshold: 40MB (41943040 bytes)
  Warning: Large mailbox: test (173673513)
 
 ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- 

 
 --------------------- SSHD Begin ------------------------ 

 
 Users logging in through sshd:
    test:
       11.22.33.44 (chello.surfer.at): 2 times
 
 
 Received disconnect:
    11: disconnected by user : 1 Time(s)
 
 ---------------------- SSHD End ------------------------- 

 
 --------------------- Disk Space Begin ------------------------ 

 Filesystem                                                              Size  Used Avail Use% Mounted on
 rootfs                                                                   56G   22G   32G  41% /
 udev                                                                     10M     0   10M   0% /dev
 /dev/disk/by-uuid/8928d836-a399-4829-9849-915046159c7d                   56G   22G   32G  41% /
 /dev/sdd1                                                               917G  7.9G  863G   1% /media/STORE
 /dev/sdd1                                                               917G  7.9G  863G   1% /var/www/STORE
 /dev/mapper/udisks-luks-uuid-080f13f5-37ae-48db-a0f3-916377e7622a-uid0  3.6T  610G  2.9T  18% /media/MyRAID
 
 
 ---------------------- Disk Space End ------------------------- 

 
 ###################### Logwatch End #########################

2 thoughts on “Watching logs with Logwatch”

AracelyCLamarche says:

July 14, 2015 at 1:56 pm

Excellent website. Plenty of useful information here.
I’m sending it to some pals ans also sharing in delicious.
And obviously, thank you on your effort!

DominqueQVanwart says:

July 19, 2015 at 1:52 pm

Peculiar article, exactly what I wanted to find.

2 thoughts on “Watching logs with Logwatch”

Leave a Reply Cancel reply