Pretending to not be afraid is as good as actually not being afraid. David Letterman
Idea Transcript
[Sysadmin] LogWatch for tempest root root at tempest.evolt.org Fri Jan 22 06:25:41 CST 2010 Previous message: [Sysadmin] LogWatch for tempest Next message: [Sysadmin] LogWatch for tempest Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] ################### LogWatch 5.2.2 (06/23/04) #################### Processing Initiated: Fri Jan 22 06:25:17 2010 Date Range Processed: yesterday Detail Level of Output: 10 Logfiles for Host: tempest ################################################################ --------------------- Cron Begin ------------------------ Commands Run: User dmah: /home/dmah/bin/article_reminder.pl: 1 Time(s) /home/dmah/bin/comment_reminder.pl: 1 Time(s) User mailman: /usr/bin/python -S /home/mailman/lists.evolt.org/cron/checkdbs: 1 Time(s) /usr/bin/python -S /home/mailman/lists.evolt.org/cron/disabled: 1 Time(s) /usr/bin/python -S /home/mailman/lists.evolt.org/cron/gate_news: 288 Time(s) /usr/bin/python -S /home/mailman/lists.evolt.org/cron/nightly_gzip: 1 Time(s) /usr/bin/python -S /home/mailman/lists.evolt.org/cron/senddigests: 1 Time(s) User neuro: ~neuro/beo/oldbeo/mkarchivesize >/dev/null 2>&1: 1 Time(s) User root: run-parts --report /etc/cron.hourly: 24 Time(s) [ -d /var/lib/php4 ] && find /var/lib/php4/ -type f -cmin +$(/usr/lib/php4/maxlifetime) -print0 | xargs -r -0 rm: 48 Time(s) /home/dmah/bin/qmail-kill.sh 1> /dev/null 2>&1: 144 Time(s) /store/host/browsers.evolt.org/mkarchivesize: 1 Time(s) /usr/bin/freshclam --quiet -l /var/log/clam-update.log: 1 Time(s) /usr/sbin/ntpdate -su us.pool.ntp.org us.pool.ntp.org: 1 Time(s) /var/qmail/bin/qmailstats 1>/dev/null 2>/dev/null: 1 Time(s) if [ -x /usr/bin/vnstat ] && [ `ls /var/lib/vnstat/ | wc -l` -ge 1 ]; then /usr/bin/vnstat -u; fi: 288 Time(s) test -x /usr/sbin/anacron || run-parts --report /etc/cron.daily: 1 Time(s) test -x /usr/sbin/cron-apt && /usr/sbin/cron-apt: 1 Time(s) User www-data: [ -x /usr/lib/cgi-bin/awstats.pl -a -f /etc/awstats/awstats.conf -a -r /var/log/apache/access.log ] && /usr/lib/cgi-bin/awstats.pl -config=awstats -update >/dev/null: 144 Time(s) ---------------------- Cron End -------------------------
--------------------- EXIM Begin ------------------------
--- Messages history --3 messages delivered immediately to 3 total recipients ---------------------- EXIM End -------------------------
--------------------- httpd Begin ------------------------ 0.07 MB transfered in 415 responses (1xx 0, 2xx 0, 3xx 81, 4xx 334, 5xx 0) 21 Images (0.01 MB), 8 Documents (0.00 MB), 2 Archives (0.00 MB), 213 Content pages (0.04 MB), 1 mod_proxy connection attempts (0.00 MB), 170 Other (0.02 MB) Attempts to use 1 known hacks were logged 9 time(s) phpmyadmin by 64.15.66.234 3 time(s) 80.86.99.136 6 time(s) Connection attempts using mod_proxy: 62.243.74.6 -> 62.243.73.161:25 : 1 Time(s) A total of 2 sites probed the server 64.15.66.234 80.86.99.136 A total of 44 unidentified 'other' records logged GET /djc/stdio/index.cfm/daddy/show/mommy/94 HTTP/1.1 with response code(s) 1 404 responses GET /shaggy/javascript/create_slideshow HTTP/1.1 with response code(s) 1 404 responses GET /fields/files/template_trifold.fh9 HTTP/1.1 with response code(s) 1 404 responses GET /mccreath/potatosalad/archives/~amnsnow.mpe HTTP/1.1 with response code(s) 1 404 responses GET /PHP-Login-System-with-Admin-Features/ll tell you. If you look in constants.php you HTTP/1.1 with response code(s) 2 400 responses GET /jeff/code HTTP/1.1 with response code(s) 1 404 responses GET /signup.cfm HTTP/1.1 with response code(s) 8 404 responses GET /jesteruk HTTP/1.1 with response code(s) 1 404 responses GET /f