I have a web server running and its generating lot of logs daily. Currently, Iam manually zipping last 2 days log files and moving them to a different folder called "old logs". Iam keeping them there for 5 days for any reference and eventually deleting them.
When I try to login as me - it gets pretty far but then something happens and automatically logs out. This happens in Gnome, Kde too. Now - I have no problem logging in a Root. Is there a way I can try to stop the login process before it kicks me out, or is there a way to look at some files to tell me what's going on?
On our app server the logs from the Sybase Mobilink service get logged to /var/log because of that I did a chmod a+rx /var/log and all is well until.... the next day QA logs in goes to check the logs and gets:
When I select restart from the shut down menu sometimes instead of shutting the system down it insteads just ends my session and logs me out (which leads me to believe perhaps my session is crashing when it tries to reboot?
Is it possible to view the full logs of what yum has done through packagekit?
I ask this, because if you update your packages, and if a configuration file cannot be automatically merged, you will have two configuration files: /etc/config.rpmnew (or .rpmsav, I don't remember) and /etc/config.code...
I currently run kernel 2.6.34.7-66.fc13.i686 (sort of). When I select from the Gnome menu System -> Shutdown and select Shutdown from the dialog, my system only logs out, presenting me with the greeting screen. While this is a minor problem and I rarely shutdown my machine, it is mildly disconcerting.I have dropped back to 2.6.34.7-63.fc13.i686 and that shutdowns properly using this method. (Also, 2.6.34.7-61.fc13.i686 works properly). I can imagine that it might close some security issue in which an unauthorized user is able to halt the entire machine. Especially if this is something that will continue in future releases of the kernel.
browse the internet for about 30min till NetworkManager craps out on me. but it'll come back as " connected " in about 10 minutes time. where i could look at what causes this? would the error be in my logs? iv'e updated each Network Mangler from updates and updates-testing and still dont fix the problem. i know i never had the problem in 0.8.x of NM.
I'm trying to find ssh logs from up to 6 months ago. I can only access the /var/log/secure* logs up until the beginning of this month. Any way to find the older ones? Do they get archived somewhere else?
I have an install of Fedora 12 and I would like to know how to reduce the size of the /var/log/messages file.You see that file is already 120MB large and about 4 days old.I would like to be able to either make a new file daily or adjust a maximum size
Currently Im having a syslog server that consolidate firewall logs on port 514 udp. Im also having a IDS device that I wish to push its logs to this particular syslog server so that I can retrieve my IDS logs on this server as well.
Is it possible to do so?Having syslog listening on port 514 for both firewall and IDS logs? If it is possible will the logs be recorded in a single log file?Or will it be recorded in a separate log file ie. firewall.log, IDS.log etc?? I wish to have them in separate individual log files or else there will be hard time segregating the log entries in a single file. Can anyone advice on how to achieve this??
Is there an easy way to determine the concise history of all the times I've run yum to install packages on my machine? I'm migrating to FC15 and I'd like to duplicate the old machine as much as possible on the new machine, and therefore, I'd like to know what I installed on it.
I'm trying to get wireless working in F10. Using pci wireless card with Atheros chipset. To be sure, I tested this hardware with a PCLinuxOS Live CD. Connects to AP perfectly.
Hardware drivers seem all OK in F10, and ifconfig shows wlan0 as expected. When I use the Wireless-Assistant 0.5.7 there's no connection.
Actually, the AP logs show numerous connections and disconnections.
Preferring CLI, I'm using a drop-dead simple wpa_supplicant.conf as follows :
Should Ipost some debugging output from wpa_supplicant -Dwext -c/etc/wpa_supplicant/wpa_supplicant.conf -iwlan0 -d
I recently started having a strange problem: whenever skype makes a sound, e.g. when a contact logs in or out, rhythmbox puts itself into paused mode. this is even reproducible. when I go in to the skype settings, sound devices, and click on "Make a test sound", rhythmbox pauses whatever song it's playing. here's some debug output:
I've recently installed Fedora 14 (x86_64) on my Alienware m15x laptop which has a NVIDIA GTX 260m onboard. Now I have followed leigh123linux's guide to installing those drivers on F14. The installation is a success and everything seems to be in working order, until the system randomly logs the user out and/or restarts the session with no warning. The screen goes black and the nvidia logo appears and then its back to the login screen again. This can happen many times with no apparent stop insight. This does not happen with the default F14 drivers that come with the installation, I have tried several re installations of the Fedora OS and several re installations of the NVIDIA driver, i still have the same problems.
went through the tutorial on FedoraSolved for securing ssh. I installed denyhosts with yum and then tried to run it with the command line command"sudo /etc/init.d/denyhosts start" but I got the message"Job Failed. See system logs and 'systemctl status' for details [FAILED]"and in the application "services" in the applications menu,t shows an exclamation warning and says that "This unit has failed"
I just putup the fedora15 on my PC. there are several msg coming up from selinux saying permission denied, though I am not doing any administrative activity. the PC being a workstation for reaserch. how can I know the denial is for an security intrusion attempt. how can I set conditions to see the logs of all security intrusions. how can I set exclusive msg-ing from selinux that the denial is for a security intrusion attempt.
I am mystified as to what is happening to my NFS mount which is very strange as it sounds like the NFS server is allowing the connection.Does anybody have any ideas ? Are there any other NFS logs I can look at ? There doesn't appear to be a hell of a lot for me to go on ..
1) THE SETUP: I have a home set-up with 3 Ubuntu computers, including an HTPC which is always on, plugged into a Verizon FIOS routerI also have a web based cam (TrendNet TV IP422W).The cam has an ethernet jack so it plugs in directly to the router.It has a simple firmware that allows users to log in via HTTP.It is also managed via HTTP.
2)THE PROBLEM: the cam does not keep logs.So I never know who is logged in at any one point. It's not a big deal, but it is annoying.I want to fix that.The router does not keep logs either.I was told I can get a linux based router to replace (or plug in) to the default FIOS router, but I am looking for something simpler and cheaper.
3)THE FAILED SOLUTION: my idea was to set up the Ubuntu HTPC to always forward a given port to the webcam via the LAN. I tried to follow the instruction from URL...as best I could, see below. 6666 is the port that the cam is listening to (the router is set to forward that port to the cam's LAN IP 192.168.1.30). 5555 is the port that I am trying to forward through the HTPC (ubuntu.local or 192.168.1.130 below, and the router is set to forward any 5555 TCP packets to the HTPC at 192.168.1.130).The iptables commands below where run on the HTPC.
My laptop Dell Inspiron 1420 running Ubuntu 10.10 has started logging itself out every 30-60 minutes or so. I am trying to figure out what is the problem. I am wondering if it is
1) a hardware problem. I have recently replaced the cooling fan which required disassembling the whole thing into small pieces. The computer has worked without a problem for one day after the repair.
or
2) a problem with a recent update. The computer started logging itself out after a recent update. This coincidence is suspicious, but I hasn't noticed anyone reporting a similar problem with Ubuntu 10.10.
Is there a way I can see what is happening through the system log? What would be the keyword I should look for in the log files?
Can I track the last updates I have applied and roll them back?
The only solution I see now is to reassemble the laptop to see if it helps.
I have installed Ubuntu 11.04 over the weekend and wanted to tail the logs whilst doing so stuff. When I browsed to the folder after getting an error trying to tail, I noticed that the messages file does not exist.
I Have RHEL4 running on IBM X3550 server, we request IBM support regarding issues with this server, they will request for IBM DSA logs. The logs are quite extensive and cover almost all server config & can identify hardware issues with drivers...etc. I want to know if there is a way to analysis those logs offline without sending them to IBM support?
I am going to read the logs (system log, security log) through my "C" application, operating system is Linux fedora core8. i am only interest in the present logs. How to read this logs through my application ,where to read, what is the logic behind this.
I noticed that on my server, I keep getting the same error flooding my logs:
Code:
We don't use CUPS but I'm sure that package is a dependency of something else. It seems like this is Samba trying to share out to the local CUPS server. How can I disable this from flooding my logs? Samba should not be sharing out any printers at all.
I have received the following log messages on my Debian Squeeze webserver:Apr 13 15:16:37 vps suhosin[4699]: ALERT - ASCII-NUL chars not allowed within request variables - dropped variable 'controller' (attacker '75.126.235.115', file '/var/www/xxxxxxxxxxxxx.com
Ubuntu one does not synchronize files since I upgraded from 9.10 to 10.04. The preferences panel keeps showing "Synchronization in progress...", but files are not downloaded from the repository. It does not show any error message.
Where do I find the programm logs, where I can investigate my problem?
I cannot find one single UFW event anywhere. I have researched this and see that others have trouble finding these logs too. I have looked in every /var/log there is and I can't find one event. I have UFW enabled, default deny and logging set to medium from a previous logging low(in hopes this would create more events to be seen). In terminal, UFW is shown as active. I have been using Ubuntu for more than a year now and I recall seeing UFW events with every session in some /var/logs in Ubuntu 9.04 - I'm running 9.10 now. I have also tried looking throughout the system files and have found nothing. Is UFW not working properly or could I just not be experiencing any firewall events(not likely)?