[Sysadmin] LogWatch for tempest
root
root at tempest.evolt.org
Thu Jan 31 06:25:56 CST 2008
################### LogWatch 5.2.2 (06/23/04) ####################
Processing Initiated: Thu Jan 31 06:25:34 2008
Date Range Processed: yesterday
Detail Level of Output: 10
Logfiles for Host: tempest
################################################################
--------------------- Cron Begin ------------------------
Commands Run:
User dkaufman:
/bin/date > $HOME/date.txt: 1440 Time(s)
User dmah:
/home/dmah/bin/article_reminder.pl: 1 Time(s)
/home/dmah/bin/comment_reminder.pl: 1 Time(s)
User mailman:
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/checkdbs: 1 Time(s)
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/disabled: 1 Time(s)
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/gate_news: 288 Time(s)
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/nightly_gzip: 1 Time(s)
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/senddigests: 1 Time(s)
User root:
run-parts --report /etc/cron.hourly: 24 Time(s)
[ -d /var/lib/php4 ] && find /var/lib/php4/ -type f -cmin +$(/usr/lib/php4/maxlifetime) -print0 | xargs -r -0 rm: 48 Time(s)
/store/host/browsers.evolt.org/mkarchivesize: 1 Time(s)
/usr/bin/freshclam --quiet -l /var/log/clam-update.log: 1 Time(s)
/usr/local/bin/planetupdate 1>/dev/null 2>&1: 24 Time(s)
/usr/sbin/ntpdate -su us.pool.ntp.org us.pool.ntp.org: 1 Time(s)
/var/qmail/bin/qmailstats 1>/dev/null 2>/dev/null: 1 Time(s)
if [ -x /usr/bin/vnstat ] && [ `ls /var/lib/vnstat/ | wc -l` -ge 1 ]; then /usr/bin/vnstat -u; fi: 288 Time(s)
test -x /usr/sbin/anacron || run-parts --report /etc/cron.daily: 1 Time(s)
test -x /usr/sbin/cron-apt && /usr/sbin/cron-apt: 1 Time(s)
wget -O - -q http://evolt.org/cron.php: 72 Time(s)
User www-data:
[ -x /usr/lib/cgi-bin/awstats.pl -a -f /etc/awstats/awstats.conf -a -r /var/log/apache/access.log ] && /usr/lib/cgi-bin/awstats.pl -config=awstats -update >/dev/null: 144 Time(s)
---------------------- Cron End -------------------------
--------------------- EXIM Begin ------------------------
--- Messages history ---
-MsgID: 1JJth2-0006Gt-00:
2008-01-30 06:26:08 => root at lists.evolt.org <root at tempest.evolt.org> R=passToQmail T=local_smtp H=lists.evolt.org [67.19.100.195]*
2008-01-30 06:26:08 Completed
-MsgID: 1JKH93-0001rU-00:
2008-01-30 11:54:45 <= root at tempest.evolt.org U=root P=local S=304
2008-01-30 11:55:03 failed to open DB file /var/spool/exim/db/wait-remote_smtp: File exists
2008-01-30 11:55:03 => dean.mah at gmail.com R=lookuphost T=remote_smtp H=gmail-smtp-in.l.google.com [66.249.83.27]
2008-01-30 11:55:03 Completed
4 messages delivered immediately to 4 total recipients
---------------------- EXIM End -------------------------
--------------------- httpd Begin ------------------------
4.96 MB transfered in 868 responses (1xx 0, 2xx 573, 3xx 13, 4xx 282, 5xx 0)
69 Images (0.02 MB),
9 Documents (0.00 MB),
5 Archives (0.00 MB),
611 Content pages (4.14 MB),
13 Program source files (0.10 MB),
1 mod_proxy connection attempts (0.00 MB),
160 Other (0.70 MB)
Connection attempts using mod_proxy:
66.17.4.162 -> http://lti-mail01.ltinetworks.com:25 : 1 Time(s)
A total of 97 unidentified 'other' records logged
GET /cgi-bin/viewcvs.cgi/weo_theme/Attic/evoltorg.psd?rev=1.4 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/Attic/square-bullet.psd?rev=1.2 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors-withdeouk.csv?hideattic=0&sortdir=down&rev=1.1&only_with_tag=v2_0_0&sortby=date&view=log HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/cubes-3.png?annotate=1.1&hideattic=1&sortby=date&only_with_tag=HEAD HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/CHANGELOG?rev=1.2 HTTP/1.1 with response code(s) 1 200 responses
HEAD /dshadovi/MM_resources.cfm HTTP/1.1 with response code(s) 2 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors.csv.sample?view=markup&hideattic=1&sortby=file&only_with_tag=v3_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /jswiders HTTP/1.1 with response code(s) 3 404 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors.csv?content-type=text/plain&rev=1.2 HTTP/1.1 with response code(s) 1 200 responses
GET /jeff/code/rank_select.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /dshadovi/cf_venn/demo.cfm HTTP/1.0 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/fuseware.com/description?only_with_tag=MAIN&hideattic=1&sortby=file&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/fuseware.com/description?annotate=1.1&hideattic=1&sortby=file&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors-withdeouk.csv?content-type=text/plain&rev=1.2 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/fuseware.com/description?rev=1.1&content-type=text/vnd.viewcvs-markup&hideattic=1&sortby=file&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
HEAD /jeff/code/rank_select.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors-withdeouk.csv?rev=1.2 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors.csv.sample?rev=1.2 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/Attic/work-cube.gif?rev=1.2 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors-withdeouk.csv?view=graph&hideattic=0&sortby=author&only_with_tag=HEAD HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/gosume.com/disable?only_with_tag=MAIN&hideattic=1&sortby=rev&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /mantruc/blog HTTP/1.0 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors-withdeouk.csv?view=graph&hideattic=0&sortby=date&sortdir=down&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
- with response code(s) 55 408 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors.csv.sample?rev=1.1 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors.csv?view=graph&hideattic=0&sortby=date&sortdir=down&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/CHANGELOG?rev=1.1 HTTP/1.1 with response code(s) 1 200 responses
GET /mantruc/blog HTTP/1.1 with response code(s) 1 404 responses
GET /jeff/code/js_url_variables/index.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/chkarchivemirror?rev=1.4 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/chkarchivemirror?rev=1.3 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/chkarchivemirror?r1=1.1&r2=1.2&sortby=log&only_with_tag=HEAD HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors.csv.sample HTTP/1.1 with response code(s) 1 200 responses
GET /<acronym title=\"Internet Explorer\">IE</acronym> 6 browsers, where by the border and padding are <em>included</em> in the width of an element, as opposed to <em>added on</em>. For example, when specifying the dimensions of a container you might use the following <acronym title=\"Cascading Stylesheets\">CSS</acronym> rule:</p> HTTP/1.1 with response code(s) 1 400 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors.csv?content-type=text/plain&rev=1.1 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors.csv.sample?hideattic=0&sortdir=down&rev=1.1&only_with_tag=v2_0_0&sortby=date&view=log HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors.csv.sample?hideattic=0&sortdir=down&rev=1.1&only_with_tag=v2_0_0&sortby=date&view=auto HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/fuseware.com/http?only_with_tag=MAIN&hideattic=1&sortby=file&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/gosume.com/disable?only_with_tag=MAIN&hideattic=1&sortby=file&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors.csv?hideattic=0&sortdir=down&rev=1.1&only_with_tag=v2_0_0&sortby=date&view=log HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/Attic/green-cube.png?rev=1.2 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/fuseware.com/description?view=markup&hideattic=1&sortby=file&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /luminosity HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors-withdeouk.csv?content-type=text/plain HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors.csv?content-type=text/plain HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors-withdeouk.csv?hideattic=0&sortdir=down&rev=1.1&only_with_tag=v2_0_0&sortby=date&view=auto HTTP/1.0 with response code(s) 1 200 responses
GET /fields/files/template_trifold.fh9 HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/CHANGELOG HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/fuseware.com/description?rev=1.1&view=markup&hideattic=1&sortby=file&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors.csv?rev=1.2 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/chkarchivemirror?rev=1.2 HTTP/1.1 with response code(s) 1 200 responses
GET /<a ref=\"http://www.w3.org/Addressing/rfc1738.txt\" rel=\"nofollow\">RFC 1738</a> HTTP/1.1 with response code(s) 2 400 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/Attic/evolt.ico?hideattic=1&sortdir=down&rev=1.1&only_with_tag=v2_0_0&sortby=log&view=markup HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/gosume.com/disable?rev=1.1&content-type=text/vnd.viewcvs-markup&hideattic=1&sortby=rev&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/chkarchivemirror?rev=1.1 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/Attic/gold-cube.png?rev=1.3 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_html/evolt-logo.ai?rev=1.1&sortdir=down&view=auto HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/square-bullet-default.gif?annotate=1.1&hideattic=1&sortby=date&only_with_tag=MAIN HTTP/1.0 with response code(s) 1 200 responses
GET /signup.cfm HTTP/1.1 with response code(s) 3 404 responses
GET /liorean HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/weo_html/public/###comments HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/cubes-3.png?r1=1.1&hideattic=1&sortby=date&view=log&only_with_tag=HEAD HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors.csv?view=graph&hideattic=0&sortby=author&only_with_tag=HEAD HTTP/1.0 with response code(s) 1 200 responses
GET /dshadovi HTTP/1.0 with response code(s) 1 404 responses
GET /jeff/code/dhtml_form_rollover/index.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /w00tw00t.at.ISC.SANS.DFind:) HTTP/1.1 with response code(s) 3 400 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors-withdeouk.csv HTTP/1.1 with response code(s) 1 200 responses
GET /node/22270 HTTP/1.1 with response code(s) 1 400 responses
GET /jeff/code/dhtml_form_rollover/index.cfm HTTP/1.0 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/Attic/blue-cube.gif?rev=1.2 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/fuseware.com/http?rev=1.1&view=markup&hideattic=1&sortby=file&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /jeff/code/preload_n_rollover/index.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/fuseware.com/http?rev=1.1&content-type=text/vnd.viewcvs-markup&hideattic=1&sortby=file&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /jeff/code/rank_select.cfm HTTP/1.0 with response code(s) 1 404 responses
GET /jeff/code/preload_n_rollover HTTP/1.0 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors.csv?hideattic=0&sortdir=down&rev=1.1&only_with_tag=v2_0_0&sortby=date&view=auto HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/Attic/nostar.png?rev=1.2 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/fuseware.com/http?view=markup&hideattic=1&sortby=file&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/Attic/evolt.ico?hideattic=1&sortdir=down&rev=1.1&only_with_tag=v2_0_0&sortby=author&view=markup HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/gosume.com/description?rev=1.1&content-type=text/vnd.viewcvs-markup&hideattic=1&sortby=rev&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors-withdeouk.csv?rev=1.1 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/chkarchivemirror?rev=1.5 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors.csv.sample?view=graph&hideattic=0&sortby=author&only_with_tag=HEAD HTTP/1.0 with response code(s) 1 200 responses
GET /jeff/code/preload_n_rollover HTTP/1.1 with response code(s) 1 404 responses
GET /dshadovi/MM_resources.cfm HTTP/1.1 with response code(s) 2 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/gosume.com/disable?rev=1.1&content-type=text/vnd.viewcvs-markup&hideattic=1&sortby=file&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /jeff/code/select_reset.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/gosume.com/description?only_with_tag=MAIN&hideattic=1&sortby=rev&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /jeff/code/js_cookie_vars/index.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors-withdeouk.csv?content-type=text/plain&rev=1.1 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/Attic/red-cube.gif?rev=1.2 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors.csv.sample?view=graph&hideattic=0&sortby=date&sortdir=down&only_with_tag=v2_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /garrett/site/books/factual HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors.csv?rev=1.1 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/Attic/gold-cube.gif?rev=1.2 HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/chkarchivemirror HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/beo_ng/beodl/Attic/mirrors.csv HTTP/1.1 with response code(s) 1 200 responses
A total of 13 ROBOTS were logged
Mozilla/5.0 (compatible; MJ12bot/v1.2.1; http://www.majestic12.co.uk/bot.php?+) 2 time(s)
Mozilla/5.0 (compatible; Yahoo! Slurp; http://help.yahoo.com/help/us/ysearch/slurp) 10 time(s)
WebAlta Crawler/2.0 (http://www.webalta.net/ru/about_webmaster.html) (Windows; U; Windows NT 5.1; ru-RU) 1 time(s)
Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html) 4 time(s)
Mozilla/5.0 (compatible; BecomeBot/3.0; +http://www.become.com/site_owners.html) 2 time(s)
<b> Runnk RSS finder: http://www.runnk.com/il/law : Israeli legal : Mishpat : עורכי דין : חוק ומשפט </b> (hybridwse at runnk.com) 1 time(s)
msnbot/1.0 (+http://search.msn.com/msnbot.htm) 5 time(s)
Gigabot/3.0 (http://www.gigablast.com/spider.html) 1 time(s)
Mozilla/5.0 (compatible; Yahoo! Slurp China; http://misc.yahoo.com.cn/help.html) 1 time(s)
Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.8.1) VoilaBot BETA 1.2 (http://www.voila.com/) 1 time(s)
<b> Runnk RSS aggregator : http://www.runnk.com/il/law Israeli legal עורכי דין חוק ומשפט </b> (hybridwse at runnk.com) 1 time(s)
msnbot-media/1.0 (+http://search.msn.com/msnbot.htm) 5 time(s)
Speedy Spider (http://www.entireweb.com/about/search_tech/speedy_spider/) 1 time(s)
---------------------- httpd End -------------------------
--------------------- Kernel Begin ------------------------
3 Time(s): NET: 1 messages suppressed.
1 Time(s): NET: 10 messages suppressed.
2 Time(s): NET: 11 messages suppressed.
1 Time(s): NET: 12 messages suppressed.
1 Time(s): NET: 14 messages suppressed.
2 Time(s): NET: 16 messages suppressed.
2 Time(s): NET: 18 messages suppressed.
4 Time(s): NET: 19 messages suppressed.
1 Time(s): NET: 2 messages suppressed.
1 Time(s): NET: 20 messages suppressed.
2 Time(s): NET: 21 messages suppressed.
2 Time(s): NET: 22 messages suppressed.
1 Time(s): NET: 29 messages suppressed.
1 Time(s): NET: 3 messages suppressed.
1 Time(s): NET: 32 messages suppressed.
1 Time(s): NET: 33 messages suppressed.
2 Time(s): NET: 35 messages suppressed.
1 Time(s): NET: 39 messages suppressed.
1 Time(s): NET: 42 messages suppressed.
1 Time(s): NET: 44 messages suppressed.
1 Time(s): NET: 46 messages suppressed.
1 Time(s): NET: 49 messages suppressed.
1 Time(s): NET: 5 messages suppressed.
1 Time(s): NET: 50 messages suppressed.
1 Time(s): NET: 51 messages suppressed.
3 Time(s): NET: 6 messages suppressed.
1 Time(s): NET: 60 messages suppressed.
1 Time(s): NET: 65 messages suppressed.
1 Time(s): NET: 67 messages suppressed.
1 Time(s): NET: 7 messages suppressed.
1 Time(s): NET: 8 messages suppressed.
1 Time(s): NET: 9 messages suppressed.
1 Time(s): TCP: drop open request from 124.34.4.59/60683
1 Time(s): TCP: drop open request from 125.206.187.91/36041
1 Time(s): TCP: drop open request from 133.45.58.36/36235
1 Time(s): TCP: drop open request from 165.76.4.117/39751
1 Time(s): TCP: drop open request from 193.138.249.130/45125
1 Time(s): TCP: drop open request from 193.190.238.17/44784
1 Time(s): TCP: drop open request from 193.254.240.251/37998
1 Time(s): TCP: drop open request from 194.109.127.145/2233
1 Time(s): TCP: drop open request from 194.150.112.221/52914
1 Time(s): TCP: drop open request from 195.102.244.134/45108
1 Time(s): TCP: drop open request from 195.137.160.20/45434
1 Time(s): TCP: drop open request from 195.140.123.83/39972
1 Time(s): TCP: drop open request from 195.160.224.79/46393
1 Time(s): TCP: drop open request from 195.238.172.15/37338
1 Time(s): TCP: drop open request from 195.77.116.12/58395
1 Time(s): TCP: drop open request from 201.91.17.205/22618
1 Time(s): TCP: drop open request from 202.181.98.166/4676
1 Time(s): TCP: drop open request from 202.221.162.109/56266
1 Time(s): TCP: drop open request from 202.233.3.10/44935
1 Time(s): TCP: drop open request from 202.245.124.67/57499
1 Time(s): TCP: drop open request from 202.67.218.131/59249
1 Time(s): TCP: drop open request from 202.76.251.2/43433
1 Time(s): TCP: drop open request from 202.89.240.11/40470
1 Time(s): TCP: drop open request from 203.190.60.202/48733
1 Time(s): TCP: drop open request from 203.59.1.148/56694
1 Time(s): TCP: drop open request from 207.44.189.124/56305
1 Time(s): TCP: drop open request from 207.58.136.66/52908
1 Time(s): TCP: drop open request from 208.112.85.230/44734
1 Time(s): TCP: drop open request from 209.155.74.70/1559
1 Time(s): TCP: drop open request from 210.147.8.8/40734
1 Time(s): TCP: drop open request from 210.193.245.58/34573
1 Time(s): TCP: drop open request from 211.5.121.109/39578
1 Time(s): TCP: drop open request from 211.9.192.11/14729
1 Time(s): TCP: drop open request from 212.67.202.159/57070
1 Time(s): TCP: drop open request from 213.0.40.90/43684
1 Time(s): TCP: drop open request from 213.120.96.131/4805
1 Time(s): TCP: drop open request from 213.186.37.220/49277
1 Time(s): TCP: drop open request from 213.201.170.34/47125
1 Time(s): TCP: drop open request from 213.221.153.15/47703
1 Time(s): TCP: drop open request from 213.33.87.14/40888
1 Time(s): TCP: drop open request from 213.88.146.40/47953
1 Time(s): TCP: drop open request from 216.131.94.61/50800
1 Time(s): TCP: drop open request from 216.138.86.238/55831
1 Time(s): TCP: drop open request from 216.142.168.89/59448
1 Time(s): TCP: drop open request from 216.152.208.133/55724
1 Time(s): TCP: drop open request from 216.157.145.23/1165
1 Time(s): TCP: drop open request from 216.200.145.37/50485
1 Time(s): TCP: drop open request from 216.240.157.180/35331
1 Time(s): TCP: drop open request from 216.9.81.189/51276
1 Time(s): TCP: drop open request from 217.148.84.95/35043
1 Time(s): TCP: drop open request from 217.22.60.25/55588
1 Time(s): TCP: drop open request from 217.26.49.141/61337
1 Time(s): TCP: drop open request from 219.99.208.97/53704
1 Time(s): TCP: drop open request from 222.15.69.198/39046
1 Time(s): TCP: drop open request from 222.215.152.133/3249
1 Time(s): TCP: drop open request from 4.79.16.140/59836
1 Time(s): TCP: drop open request from 62.100.65.26/3654
1 Time(s): TCP: drop open request from 62.149.36.18/47386
1 Time(s): TCP: drop open request from 62.157.187.60/1102
1 Time(s): TCP: drop open request from 62.57.34.91/3778
1 Time(s): TCP: drop open request from 64.22.192.126/37667
1 Time(s): TCP: drop open request from 64.222.186.218/49975
1 Time(s): TCP: drop open request from 66.11.205.133/44472
1 Time(s): TCP: drop open request from 66.195.16.51/58940
1 Time(s): TCP: drop open request from 66.207.71.141/42939
1 Time(s): TCP: drop open request from 66.77.200.254/3494
1 Time(s): TCP: drop open request from 66.98.198.40/39816
1 Time(s): TCP: drop open request from 67.15.121.7/1841
1 Time(s): TCP: drop open request from 68.179.54.73/50055
1 Time(s): TCP: drop open request from 69.39.5.142/47251
1 Time(s): TCP: drop open request from 69.49.121.203/33992
1 Time(s): TCP: drop open request from 70.108.253.48/4819
1 Time(s): TCP: drop open request from 74.125.46.26/61712
1 Time(s): TCP: drop open request from 74.53.11.226/33262
1 Time(s): TCP: drop open request from 77.51.115.214/1107
1 Time(s): TCP: drop open request from 80.245.46.201/48644
1 Time(s): TCP: drop open request from 80.68.89.26/1694
1 Time(s): TCP: drop open request from 80.76.59.72/60545
1 Time(s): TCP: drop open request from 81.0.132.57/43561
1 Time(s): TCP: drop open request from 81.169.170.156/1505
1 Time(s): TCP: drop open request from 81.171.104.90/50213
1 Time(s): TCP: drop open request from 82.146.101.181/58374
1 Time(s): TCP: drop open request from 83.161.118.82/43124
1 Time(s): TCP: drop open request from 83.240.223.113/58167
1 Time(s): TCP: drop open request from 85.34.32.178/57971
1 Time(s): TCP: drop open request from 85.8.132.57/58474
1 Time(s): TCP: drop open request from 87.193.253.108/52656
1 Time(s): TCP: drop open request from 88.208.233.96/49554
1 Time(s): TCP: drop open request from 88.242.234.190/29899
1 Time(s): TCP: drop open request from 88.87.167.42/3848
1 Time(s): TCP: drop open request from 89.107.21.3/40022
1 Time(s): UDP: bad checksum. From 12.96.160.104:53 to 67.19.100.194:21759 ulen 51
1 Time(s): UDP: bad checksum. From 12.96.160.106:53 to 67.19.100.194:34476 ulen 163
1 Time(s): UDP: bad checksum. From 12.96.160.107:53 to 67.19.100.194:35494 ulen 115
1 Time(s): UDP: short packet: 12.96.160.115:53 122/106 to 67.19.100.194:64715
1 Time(s): UDP: short packet: 12.96.160.115:53 150/134 to 67.19.100.194:56116
1 Time(s): UDP: short packet: 12.96.160.115:53 159/143 to 67.19.100.194:34633
1 Time(s): UDP: short packet: 12.96.160.115:53 179/163 to 67.19.100.194:64715
1 Time(s): UDP: short packet: 12.96.160.115:53 182/166 to 67.19.100.194:51143
1 Time(s): UDP: short packet: 12.96.160.115:53 185/169 to 67.19.100.194:64715
1 Time(s): UDP: short packet: 12.96.160.115:53 187/171 to 67.19.100.194:49930
1 Time(s): UDP: short packet: 12.96.160.115:53 208/192 to 67.19.100.194:37643
1 Time(s): UDP: short packet: 12.96.160.115:53 213/197 to 67.19.100.194:49731
1 Time(s): UDP: short packet: 12.96.160.115:53 213/197 to 67.19.100.194:49762
1 Time(s): UDP: short packet: 12.96.160.115:53 213/197 to 67.19.100.194:57907
1 Time(s): UDP: short packet: 12.96.160.115:53 214/198 to 67.19.100.194:54852
1 Time(s): UDP: short packet: 12.96.160.115:53 222/206 to 67.19.100.194:64715
1 Time(s): UDP: short packet: 12.96.160.115:53 243/227 to 67.19.100.194:57990
1 Time(s): UDP: short packet: 12.96.160.115:53 283/267 to 67.19.100.194:39407
1 Time(s): UDP: short packet: 12.96.160.115:53 283/267 to 67.19.100.194:58138
1 Time(s): UDP: short packet: 12.96.160.115:53 313/297 to 67.19.100.194:52263
1 Time(s): UDP: short packet: 12.96.160.115:53 313/297 to 67.19.100.194:60365
1 Time(s): UDP: short packet: 12.96.160.115:53 502/486 to 67.19.100.194:43770
1 Time(s): UDP: short packet: 12.96.160.115:53 507/491 to 67.19.100.194:36679
1 Time(s): UDP: short packet: 12.96.160.115:53 509/493 to 67.19.100.194:51182
1 Time(s): UDP: short packet: 12.96.160.115:53 530/514 to 67.19.100.194:34012
1 Time(s): UDP: short packet: 12.96.160.115:53 530/514 to 67.19.100.194:37682
1 Time(s): UDP: short packet: 12.96.160.115:53 530/514 to 67.19.100.194:56343
1 Time(s): UDP: short packet: 12.96.160.115:53 530/514 to 67.19.100.194:56940
1 Time(s): device eth0 entered promiscuous mode
1 Time(s): device eth0 left promiscuous mode
30 Time(s): sending pkt_too_big (len[1500] pmtu[1496]) to self
---------------------- Kernel End -------------------------
--------------------- Named Begin ------------------------
Named started: 2 Time(s)
Named shutdown: 2 Time(s)
Loaded Zones:
0.in-addr.arpa/IN: 2 Time(s)
127.in-addr.arpa/IN: 2 Time(s)
255.in-addr.arpa/IN: 2 Time(s)
evolt.org/IN: 2 Time(s)
evolters.org/IN: 2 Time(s)
localhost/IN: 2 Time(s)
Can't add command channel:
127.0.0.1#953:
permission denied: 2 Time(s)
**Unmatched Entries**
binding TCP socket: address in use: 2 Time(s)
dns/org.evolters:35: file does not end with newline: 2 Time(s)
none:0: open: /etc/bind/rndc.key: permission denied: 2 Time(s)
notify question section contains no SOA: 2 Time(s)
---------------------- Named End -------------------------
--------------------- pam_unix Begin ------------------------
cron:
Sessions Opened:
dkaufman: 1440 Time(s)
root: 462 Time(s)
mailman: 292 Time(s)
www-data: 144 Time(s)
dmah: 2 Time(s)
sshd:
Sessions Opened:
dmah: 5 Time(s)
su:
Sessions Opened:
dmah(uid=0) -> root: 5 Time(s)
(uid=0) -> nobody: 1 Time(s)
---------------------- pam_unix End -------------------------
--------------------- sendmail Begin ------------------------
ERROR: Could not open /etc/mail/local-host-names
ERROR: Could not open /etc/mail/access
Message Size Distribution:
Range # Msgs KBytes
0 - 10k 0 0
10k - 20k 0 0
20k - 50k 0 0
50k - 100k 0 0
100k - 500k 0 0
500k - 1Mb 0 0
1Mb - 2Mb 0 0
2Mb - 5Mb 0 0
5Mb - 10Mb 0 0
10Mb+ 0 0
----------------------------------
TOTAL 0 0
---------------------- sendmail End -------------------------
--------------------- SSHD Begin ------------------------
Couldn't resolve these IPs:
174.248.177.220.broad.nc.jx.dynamic.163data.com.cn: 5 Time(s)
Didn't receive an ident from these IPs:
174.248.177.220.broad.nc.jx.dynamic.163data.com.cn (220.177.248.174): 5 Time(s)
211.100.237.254: 5 Time(s)
218.200.169.234: 6 Time(s)
219.238.235.188: 5 Time(s)
h-64-105-32-83.snvacaid.covad.net (64.105.32.83): 2 Time(s)
Failed logins from these:
aaron/password from 64.105.32.83: 3 Time(s)
admin/password from 219.238.235.188: 4 Time(s)
admin/password from 64.105.32.83: 8 Time(s)
alias/password from 211.100.237.254: 5 Time(s)
gt05/password from 64.105.32.83: 1 Time(s)
office/password from 211.100.237.254: 5 Time(s)
recruit/password from 211.100.237.254: 5 Time(s)
root/password from 213.156.112.182: 11 Time(s)
root/password from 218.200.169.234: 21 Time(s)
root/password from 219.238.235.188: 7 Time(s)
root/password from 64.105.32.83: 6 Time(s)
sales/password from 211.100.237.254: 5 Time(s)
samba/password from 211.100.237.254: 5 Time(s)
staff/password from 211.100.237.254: 5 Time(s)
staff/password from 220.177.248.174: 5 Time(s)
stud/password from 64.105.32.83: 6 Time(s)
tomcat/password from 211.100.237.254: 5 Time(s)
trash/password from 64.105.32.83: 5 Time(s)
Illegal users from these:
aaron/none from 64.105.32.83: 3 Time(s)
aaron/password from 64.105.32.83: 3 Time(s)
admin/none from 219.238.235.188: 4 Time(s)
admin/none from 64.105.32.83: 8 Time(s)
admin/password from 219.238.235.188: 4 Time(s)
admin/password from 64.105.32.83: 8 Time(s)
alias/password from 211.100.237.254: 5 Time(s)
gt05/none from 64.105.32.83: 1 Time(s)
gt05/password from 64.105.32.83: 1 Time(s)
office/none from 211.100.237.254: 5 Time(s)
office/password from 211.100.237.254: 5 Time(s)
recruit/none from 211.100.237.254: 5 Time(s)
recruit/password from 211.100.237.254: 5 Time(s)
sales/none from 211.100.237.254: 5 Time(s)
sales/password from 211.100.237.254: 5 Time(s)
samba/none from 211.100.237.254: 5 Time(s)
samba/password from 211.100.237.254: 5 Time(s)
staff/none from 211.100.237.254: 5 Time(s)
staff/none from 220.177.248.174: 5 Time(s)
staff/password from 211.100.237.254: 5 Time(s)
staff/password from 220.177.248.174: 5 Time(s)
stud/none from 64.105.32.83: 6 Time(s)
stud/password from 64.105.32.83: 6 Time(s)
tomcat/none from 211.100.237.254: 5 Time(s)
tomcat/password from 211.100.237.254: 5 Time(s)
trash/none from 64.105.32.83: 5 Time(s)
trash/password from 64.105.32.83: 5 Time(s)
User login attempt failed because:
shell /sbin/nologin does not exist:
alias : 5 Time(s)
Users logging in through sshd:
dmah:
S010600c049d9e99b.cg.shawcable.net (70.73.105.151): 5 times
**Unmatched Entries**
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
---------------------- SSHD End -------------------------
--------------------- Sudo (secure-log) Begin ------------------------
==============================================================================
dmah => root
------------------------------------------------------------------------------
/bin/su -
/bin/su -
/bin/su -
/bin/su -
/bin/su -
---------------------- Sudo (secure-log) End -------------------------
--------------------- Syslogd Begin ------------------------
Syslogd started 1 Time(s)
---------------------- Syslogd End -------------------------
--------------------- vpopmail Begin ------------------------
No Such User Found:
@vendormail.prime-vendor.com - 1 Time(s)
share@ - 15 Time(s)
**Unmatched Entries**
vchkpw-smtp: invalid user/domain characters cn=mail-sygnet.syspace.co.uk, cn=sygnet.syspace.co.uk, ou=netscape servers, o=fdgroup.co.uk:213.143.10.2
---------------------- vpopmail End -------------------------
------------------ Disk Space --------------------
/dev/hda3 72G 25G 44G 37% /
/dev/hda1 92M 6.3M 81M 8% /boot
###################### LogWatch End #########################
More information about the Sysadmin
mailing list