logwatch(ZT)

转载 于 2005-11-20 10:15:00 发布 · 1.1k 阅读 · 1
文章标签:

#documentation #debugging #structure #search #login #integer

NAME

       logwatch - system log analyzer and reporter

SYNOPSIS

       logwatch  [--detail level ] [--logfile log-file-group ] [--service ser-
       vice-name ] [--print] [--mailto address ] [--archives] [--range range ]
       [--debug  level ] [--save file-name ] [--logdir directory ] [--hostname
       hostname  ]  [--splithosts]  [--multiemail]  [--output  output-type   ]
       [--numeric] [--version] [--help|--usage]

DESCRIPTION

       LogWatch  is  a customizable, pluggable log-monitoring system.  It will
       go through your logs for a given period of time and make  a  report  in
       the  areas  that  you  wish with the detail that you wish.  Logwatch is
       being used for Linux and many types of UNIX.

OPTIONS

       --detail level
              This is the detail level of the report.  level can be a positive
              integer, or high, med, low, which correspond to the integers 10,
              5, and 0, repectively.

       --logfile log-file-group
              This will force LogWatch to process only  the  set  of  logfiles
              defined  by  log-file-group (i.e. messages, xferlog, ...).  Log-
              Watch will therefore process all services that  use  those  log-
              files.   This  option can be specified more than once to specify
              multiple logfile-groups.

       --service service-name
              This will force LogWatch to process only the  service  specified
              in  service-name  (i.e. login, pam, identd, ...).  LogWatch will
              therefore also process any log-file-groups necessary to  process
              these  services.  This option can be specified more than once to
              specify multiple services to process.  A useful service-name  is
              All  which  will  process  all services (and logfile-groups) for
              which you have filters installed.

       --print
              Print the results to stdout (i.e. the screen).

       --mailto address
              Mail the results to the  email  address  or  user  specified  in
              address.

       --range range
              You  can specify a date-range to process. Common ranges are Yes-
              terday, Today, All, and Help.   Additional  options  are  listed
              when invoked with the Help parameter.

       --archives
              Each  log-file-group has basic logfiles (i.e. /var/log/messages)
              as well as archives (i.e. /var/log/messages.?  or  /var/log/mes-
              sages.?.gz).   When  used  with  "--range all", this option will
              make LogWatch search through the archives  in  addition  to  the
              regular  logfiles.   For  other values of --range, LogWatch will
              search the appropriate archived logs.

       --debug level
              For debugging purposes.  level can range from 0  to  100.   This
              will  really clutter up your output.  You probably don't want to
              use this.

       --save file-name
              Save the output to file-name instead of  displaying  or  mailing
              it.

       --logdir directory
              Look  in  directory  for log files instead of the default direc-
              tory.

       --hostname hostname
              Use hostname for the reports instead of this system's  hostname.
              In addition, if HostLimit is set in the logwatch.conf configura-
              tion file (see MORE INFORMATION, below),  then  only  logs  from
              this hostname will be processed (where appropriate).

       --numeric
              Inhibits additional name lookups, displaying IP addresses numer-
              ically.

       --usage
              Displays usage information

       --help same as --usage.

FILES

       /usr/share/logwatch/
              This directory contains all the perl executables and  configura-
              tion files shipped with the logwatch distribution.

       /etc/logwatch
              This  directory contains local configuration files that override
              the default configuration.  See MORE INFORMATION below for  more
              information.

EXAMPLES

       logwatch  --service  ftpd-xferlog  --range  all  --detail  high --print
       --archives
              This will print out all FTP transfers that  are  stored  in  all
              current and archived xferlogs.
       logwatch --service pam_pwdb --range yesterday --detail high --print
              This will print out login information for the previous day...

MORE INFORMATION

       The  directory  /usr/share/doc/logwatch-*  contains  several files with
       additional documentation:
       HOWTO-Customize-LogWatch
              Documents the directory structure of LogWatch configuration  and
              executable  files,  and  describes  how to customize LogWatch by
              overriding these default files.
       License
              Describes the  License  under  which  LogWatch  is  distributed.
              Additional clauses may be specified in individual files.
       README
              Describes  how  to install, where to find it, mailing lists, and
              other useful information.

AUTHOR

       Kirk Bauer <kirk@kaybee.org>
       http://www.kaybee.org/~kirk
       ftp://ftp.kaybee.org/pub/redhat/RPMS
wishfly
关注
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值