[Sysadmin] LogWatch for tempest
root
root at tempest.evolt.org
Thu Feb 26 06:25:56 CST 2009
################### LogWatch 5.2.2 (06/23/04) ####################
Processing Initiated: Thu Feb 26 06:25:27 2009
Date Range Processed: yesterday
Detail Level of Output: 10
Logfiles for Host: tempest
################################################################
--------------------- Cron Begin ------------------------
Commands Run:
User dmah:
/home/dmah/bin/article_reminder.pl: 1 Time(s)
/home/dmah/bin/comment_reminder.pl: 1 Time(s)
User mailman:
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/checkdbs: 1 Time(s)
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/disabled: 1 Time(s)
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/gate_news: 288 Time(s)
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/nightly_gzip: 1 Time(s)
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/senddigests: 1 Time(s)
User neuro:
~neuro/beo/oldbeo/mkarchivesize >/dev/null 2>&1: 1 Time(s)
User root:
run-parts --report /etc/cron.hourly: 24 Time(s)
[ -d /var/lib/php4 ] && find /var/lib/php4/ -type f -cmin +$(/usr/lib/php4/maxlifetime) -print0 | xargs -r -0 rm: 48 Time(s)
/store/host/browsers.evolt.org/mkarchivesize: 1 Time(s)
/usr/bin/freshclam --quiet -l /var/log/clam-update.log: 1 Time(s)
/usr/sbin/ntpdate -su us.pool.ntp.org us.pool.ntp.org: 1 Time(s)
/var/qmail/bin/qmailstats 1>/dev/null 2>/dev/null: 1 Time(s)
if [ -x /usr/bin/vnstat ] && [ `ls /var/lib/vnstat/ | wc -l` -ge 1 ]; then /usr/bin/vnstat -u; fi: 288 Time(s)
test -x /usr/sbin/anacron || run-parts --report /etc/cron.daily: 1 Time(s)
test -x /usr/sbin/cron-apt && /usr/sbin/cron-apt: 1 Time(s)
User www-data:
[ -x /usr/lib/cgi-bin/awstats.pl -a -f /etc/awstats/awstats.conf -a -r /var/log/apache/access.log ] && /usr/lib/cgi-bin/awstats.pl -config=awstats -update >/dev/null: 144 Time(s)
---------------------- Cron End -------------------------
--------------------- EXIM Begin ------------------------
--- Messages history ---
-MsgID: 1LbyNo-00035r-00:
2009-02-25 06:26:28 => root at lists.evolt.org <root at tempest.evolt.org> R=passToQmail T=local_smtp H=lists.evolt.org [67.19.100.195]*
2009-02-25 06:26:28 Completed
-MsgID: 1LcKj5-00069W-00:
2009-02-25 08:31:23 <= root at tempest.evolt.org U=root P=local S=877
2009-02-25 08:34:32 lists.evolt.org [67.19.100.195]: Connection timed out
2009-02-25 08:34:32 == root at lists.evolt.org <root at tempest.evolt.org> T=local_smtp defer (110): Connection timed out
2009-02-25 08:34:32 failed to open DB file /var/spool/exim/db/retry: File exists
2 messages delivered immediately to 2 total recipients
---------------------- EXIM End -------------------------
--------------------- httpd Begin ------------------------
1.37 MB transfered in 980 responses (1xx 0, 2xx 1, 3xx 45, 4xx 934, 5xx 0)
70 Images (0.02 MB),
8 Documents (0.00 MB),
2 Archives (0.00 MB),
767 Content pages (1.32 MB),
3 Program source files (0.00 MB),
130 Other (0.03 MB)
A total of 75 unidentified 'other' records logged
GET /djc/stdio/index.cfm/daddy/show/mommy/40 HTTP/1.1 with response code(s) 1 404 responses
GET /webdad/testing/day_scheduler.html, HTTP/1.1 with response code(s) 1 404 responses
GET /article/search_engine_friendly_urls_with_php_and_apache/17/15049/\" class=http://niltonka.sites.uol.com.br/envio01.txt? HTTP/1.1 with response code(s) 1 400 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/gosume.com/disable?sortby=log&view=graph HTTP/1.1 with response code(s) 1 404 responses
GET /gsws/license.kwd HTTP/1.1 with response code(s) 1 404 responses
GET /jesteruk HTTP/1.1 with response code(s) 1 404 responses
GET /roundcubemail-0.1/bin/msgimport HTTP/1.1 with response code(s) 2 404 responses
GET /shaggy/javascript/create_slideshow HTTP/1.0 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors.csv?sortby=log&view=graph HTTP/1.1 with response code(s) 1 404 responses
HEAD /ia.cfm HTTP/1.0 with response code(s) 1 404 responses
GET /jswiders HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/flirble.org/http?rev=1.1&content-type=text/vnd.viewcvs-markup&sortby=log HTTP/1.1 with response code(s) 1 404 responses
GET /signup.cfm HTTP/1.0 with response code(s) 5 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/print.module?rev=1.5&hideattic=0&view=markup HTTP/1.1 with response code(s) 1 404 responses
GET /PHP-Login-System-with-Admin-Features/, make sure your database name and password information is specified correctly in constants.php. If you still can HTTP/1.1 with response code(s) 1 400 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/mirrorservice.org/contact?sortby=log&view=graph HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors.csv.sample?rev=1.1&content-type=text/vnd.viewcvs-markup&sortby=log HTTP/1.1 with response code(s) 1 404 responses
GET /mwarden HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/print.module?hideattic=0&r1=1.7&r2=1.8 HTTP/1.1 with response code(s) 1 404 responses
GET /seb HTTP/1.1 with response code(s) 1 404 responses
GET /roundcube-0.1/bin/msgimport HTTP/1.1 with response code(s) 2 404 responses
GET /dshadovi/traffic.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/beodl/Attic/mirrors.csv.sample?rev=1.2&sortby=log&view=auto HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/print.module?rev=1.16&content-type=text/vnd.viewcvs-markup&sortby=log HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/flirble.org/http?rev=1.2&sortby=log&view=auto HTTP/1.1 with response code(s) 1 404 responses
GET /node/15049\" class=http://niltonka.sites.uol.com.br/envio01.txt? HTTP/1.1 with response code(s) 2 400 responses
GET HTTP/1.1 HTTP/1.1 with response code(s) 2 400 responses
GET /rss/articles.rss HTTP/1.0 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/2dhosting.com/description?sortby=log&view=graph HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/planetmirror.com/contact?sortby=log&view=graph HTTP/1.1 with response code(s) 1 404 responses
- with response code(s) 35 408 responses
GET /garrett/site/books/factual HTTP/1.0 with response code(s) 2 404 responses
GET /gozz/stripcr.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /mantruc/blog HTTP/1.1 with response code(s) 1 404 responses
GET /jeff/code/js_url_variables/index.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/.cvsignore?only_with_tag=MAIN&view=graph HTTP/1.1 with response code(s) 1 404 responses
GET /~shannon HTTP/1.1 with response code(s) 1 404 responses
GET /roundcube/bin/msgimport HTTP/1.1 with response code(s) 2 404 responses
GET /deadL0ck HTTP/1.1 with response code(s) 1 404 responses
GET /bin/msgimport HTTP/1.1 with response code(s) 2 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/print.module?sortby=log&view=graph HTTP/1.1 with response code(s) 1 404 responses
GET /roundcubemail-0.2/bin/msgimport HTTP/1.1 with response code(s) 2 404 responses
GET /turkif HTTP/1.0 with response code(s) 1 404 responses
GET /=Evolt HTTP/1.0 with response code(s) 1 404 responses
GET /jeff/code/form_to_window/index.cfm HTTP/1.0 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/print.module?annotate=1.11&hideattic=0 HTTP/1.1 with response code(s) 1 404 responses
GET /arijit/dw_ext HTTP/1.1 with response code(s) 1 404 responses
GET /article/making_clean_urls_with_apache_and_php/18/22880/\" class=http://niltonka.sites.uol.com.br/envio01.txt? HTTP/1.1 with response code(s) 1 400 responses
GET /PHP-Login-System-with-Admin-Features/ll tell you. If you look in constants.php you HTTP/1.1 with response code(s) 1 400 responses
GET /bumblelee HTTP/1.1 with response code(s) 1 404 responses
GET /DarthGreg HTTP/1.1 with response code(s) 1 404 responses
GET /jeff/code/rollover_n_click/index.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /jeff/code/table_cell_rollover.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /roundcubemail/bin/msgimport HTTP/1.1 with response code(s) 2 404 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/print.module?rev=1.12 HTTP/1.1 with response code(s) 1 404 responses
GET /rc/bin/msgimport HTTP/1.1 with response code(s) 2 404 responses
GET /jeff/code/dhtml_form_rollover/index.cfm HTTP/1.1 with response code(s) 2 404 responses
GET /w00tw00t.at.ISC.SANS.DFind:) HTTP/1.1 with response code(s) 3 400 responses
GET /jeff/code/dhtml_form_rollover/index.cfm HTTP/1.0 with response code(s) 2 404 responses
GET /jeff/code/preload_n_rollover/index.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /rudy HTTP/1.1 with response code(s) 1 404 responses
GET /desflynn HTTP/1.1 with response code(s) 1 404 responses
GET /jeff/code/user_defined_colors.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/print.module?r1=1.5&r2=1.6&hideattic=0 HTTP/1.1 with response code(s) 1 404 responses
GET /webmail/bin/msgimport HTTP/1.1 with response code(s) 2 404 responses
GET /kroet HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/gosume.com/contact?rev=1.1&sortby=log&view=auto HTTP/1.1 with response code(s) 1 404 responses
GET /mail/bin/msgimport HTTP/1.1 with response code(s) 2 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mirrors/sites/flirble.org/disable?sortby=log&view=graph HTTP/1.1 with response code(s) 1 404 responses
GET /jeff/code/preload_n_rollover HTTP/1.1 with response code(s) 1 404 responses
GET /dshadovi/MM_resources.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /jeff/code/select_reset.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /php-login-system-with-admin-features\" class=http://niltonka.sites.uol.com.br/envio01.txt? HTTP/1.1 with response code(s) 1 400 responses
GET /garrett/site/books/factual HTTP/1.1 with response code(s) 2 404 responses
GET /turkif HTTP/1.1 with response code(s) 1 404 responses
A total of 12 ROBOTS were logged
Mozilla/5.0 (compatible; Yahoo! Slurp; http://help.yahoo.com/help/us/ysearch/slurp) 5 time(s)
Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html) 4 time(s)
Wget/1.11.4 1 time(s)
Sosospider+(+http://help.soso.com/webspider.htm) 1 time(s)
Mozilla/4.0 (compatible; NaverBot/1.0; http://help.naver.com/customer_webtxt_02.jsp) 1 time(s)
larbin_2.6.3 (larbin2.6.3 at unspecified.mail) 1 time(s)
msnbot-media/1.1 (+http://search.msn.com/msnbot.htm) 4 time(s)
ia_archiver (+http://www.alexa.com/site/help/webmasters; crawler at alexa.com) 1 time(s)
msnbot/1.1 (+http://search.msn.com/msnbot.htm) 21 time(s)
SimilarPages/Nutch-1.0-dev (SimilarPages Nutch Crawler; http://www.similarpages.com; info at similarpages dot com) 1 time(s)
Mozilla/5.0 (compatible; ScoutJet; +http://www.scoutjet.com/) 2 time(s)
Mozilla/5.0 (Twiceler-0.9 http://www.cuil.com/twiceler/robot.html) 1 time(s)
---------------------- httpd End -------------------------
--------------------- Kernel Begin ------------------------
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.112:17957/80 shrinks window 3078345345:3078346793. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.112:20548/80 shrinks window 1600049760:1600051208. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.112:25205/80 shrinks window 181318729:181318964. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.112:27576/80 shrinks window 2064023663:2064026559. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.112:32234/80 shrinks window 2973130303:2973133199. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.112:33543/80 shrinks window 463359026:463359654. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.112:37865/80 shrinks window 2615654591:2615655178. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.112:39922/80 shrinks window 2209588240:2209589688. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.112:44714/80 shrinks window 3408404234:3408407130. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.112:45787/80 shrinks window 2417216900:2417217157. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.112:55551/80 shrinks window 2574063404:2574064746. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.112:60605/80 shrinks window 2449876033:2449877481. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.112:65057/80 shrinks window 1399854998:1399855893. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.42:42510/80 shrinks window 1667789564:1667792460. Repaired.
2 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:11317/80 shrinks window 3334066676:3334066901. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:11597/80 shrinks window 3662343787:3662345235. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:13638/80 shrinks window 3938057561:3938059009. Repaired.
2 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:15624/80 shrinks window 661057841:661060737. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:15778/80 shrinks window 2735986996:2735988444. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:16616/80 shrinks window 3514648527:3514649975. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:16616/80 shrinks window 3514713687:3514715135. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:17376/80 shrinks window 3862730181:3862731629. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:18637/80 shrinks window 3890705394:3890708290. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:18855/80 shrinks window 2854937907:2854939355. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:20341/80 shrinks window 3136827118:3136828566. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:21595/80 shrinks window 855262296:855263744. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:23548/80 shrinks window 3381912886:3381914424. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:23613/80 shrinks window 2079258148:2079261044. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:24778/80 shrinks window 2768775566:2768777014. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:25272/80 shrinks window 3985584988:3985586436. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:28552/80 shrinks window 2254984693:2254986141. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:28552/80 shrinks window 2255028133:2255031029. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:28552/80 shrinks window 2255075917:2255077690. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:29272/80 shrinks window 2963021070:2963022518. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:29507/80 shrinks window 2057167682:2057169130. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:29867/80 shrinks window 2669325346:2669328242. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:29873/80 shrinks window 1516874763:1516876211. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:30019/80 shrinks window 2804526633:2804528081. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:31557/80 shrinks window 3278665013:3278667909. Repaired.
2 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:31557/80 shrinks window 3278691077:3278695421. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:32953/80 shrinks window 392336772:392339668. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:34467/80 shrinks window 4012357322:4012360218. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:34467/80 shrinks window 4012383386:4012384834. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:35058/80 shrinks window 4114311819:4114314715. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:35058/80 shrinks window 4114339331:4114342227. Repaired.
2 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:35058/80 shrinks window 4114375531:4114378427. Repaired.
2 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:36856/80 shrinks window 3010824087:3010825535. Repaired.
2 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:37712/80 shrinks window 3177871478:3177872926. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:38071/80 shrinks window 3649357846:3649360742. Repaired.
2 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:39859/80 shrinks window 3046693579:3046695027. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:41200/80 shrinks window 732839523:732840971. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:42811/80 shrinks window 3750062229:3750065125. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:42992/80 shrinks window 2278183798:2278184555. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:44324/80 shrinks window 494906037:494907485. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:45565/80 shrinks window 3680364939:3680367835. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:46177/80 shrinks window 382334183:382334314. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:46196/80 shrinks window 349400168:349401616. Repaired.
2 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:46856/80 shrinks window 3644600925:3644602373. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:46876/80 shrinks window 3805445985:3805447433. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:46927/80 shrinks window 2594627279:2594628113. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:47062/80 shrinks window 3416927439:3416928887. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:48661/80 shrinks window 578716845:578717139. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:48780/80 shrinks window 3430762754:3430764202. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:49540/80 shrinks window 2355434435:2355434614. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:49776/80 shrinks window 2627702455:2627705351. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:49994/80 shrinks window 4066567453:4066570349. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:49994/80 shrinks window 4066594965:4066596413. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:53450/80 shrinks window 3624259565:3624261013. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:54943/80 shrinks window 1667037755:1667038926. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:57227/80 shrinks window 3568285705:3568287153. Repaired.
2 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:57341/80 shrinks window 2878836549:2878839445. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:57961/80 shrinks window 3509466854:3509468302. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:59625/80 shrinks window 3704491250:3704494146. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:60936/80 shrinks window 3089696090:3089700434. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:62003/80 shrinks window 278748370:278749818. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:62666/80 shrinks window 706699817:706700589. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:63028/80 shrinks window 1931584969:1931586417. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:63028/80 shrinks window 1931629857:1931631305. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:63538/80 shrinks window 644561540:644561889. Repaired.
2 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:63811/80 shrinks window 2835458595:2835460008. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:64111/80 shrinks window 448644388:448645836. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.43:65104/80 shrinks window 3015163467:3015166363. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.72:11224/80 shrinks window 2402266962:2402268410. Repaired.
2 Time(s): TCP: Treason uncloaked! Peer 38.108.180.72:11224/80 shrinks window 2402293026:2402294474. Repaired.
2 Time(s): TCP: Treason uncloaked! Peer 38.108.180.72:13611/80 shrinks window 535752661:535752672. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.72:21207/80 shrinks window 2664202423:2664203871. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.72:22560/80 shrinks window 290126509:290127957. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.72:22560/80 shrinks window 290154021:290155469. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.72:23414/80 shrinks window 130700866:130702314. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.72:30386/80 shrinks window 225306257:225307705. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.72:37818/80 shrinks window 2563807267:2563808715. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.72:57649/80 shrinks window 4070543693:4070546763. Repaired.
1 Time(s): TCP: Treason uncloaked! Peer 38.108.180.72:61150/80 shrinks window 4228168902:4228170350. Repaired.
1 Time(s): device eth0 entered promiscuous mode
1 Time(s): device eth0 left promiscuous mode
---------------------- Kernel End -------------------------
--------------------- pam_unix Begin ------------------------
cron:
Sessions Opened:
root: 366 Time(s)
mailman: 292 Time(s)
www-data: 144 Time(s)
dmah: 2 Time(s)
neuro: 1 Time(s)
su:
Sessions Opened:
(uid=0) -> nobody: 1 Time(s)
---------------------- pam_unix End -------------------------
--------------------- sendmail Begin ------------------------
ERROR: Could not open /etc/mail/local-host-names
ERROR: Could not open /etc/mail/access
Message Size Distribution:
Range # Msgs KBytes
0 - 10k 0 0
10k - 20k 0 0
20k - 50k 0 0
50k - 100k 0 0
100k - 500k 0 0
500k - 1Mb 0 0
1Mb - 2Mb 0 0
2Mb - 5Mb 0 0
5Mb - 10Mb 0 0
10Mb+ 0 0
----------------------------------
TOTAL 0 0
---------------------- sendmail End -------------------------
--------------------- SSHD Begin ------------------------
Didn't receive an ident from these IPs:
189.17.83.180: 4 Time(s)
221.232.131.50: 4 Time(s)
Failed logins from these:
admin/password from 221.3.131.110: 7 Time(s)
administrator/password from 189.17.83.180: 3 Time(s)
agata/password from 189.17.83.180: 3 Time(s)
alexandre/password from 189.17.83.180: 2 Time(s)
bret/password from 218.61.13.91: 1 Time(s)
demouser/password from 218.61.13.91: 1 Time(s)
fernando/password from 218.61.13.91: 2 Time(s)
info/password from 218.61.13.91: 1 Time(s)
joan/password from 189.17.83.180: 4 Time(s)
johan/password from 189.17.83.180: 4 Time(s)
joseluis/password from 189.17.83.180: 1 Time(s)
mike/password from 218.61.13.91: 1 Time(s)
oracle/password from 218.61.13.91: 1 Time(s)
postgres/password from 218.61.13.91: 2 Time(s)
raimundo/password from 189.17.83.180: 4 Time(s)
root/password from 189.17.83.180: 2 Time(s)
root/password from 218.61.13.91: 19 Time(s)
sebastian/password from 189.17.83.180: 4 Time(s)
Illegal users from these:
admin/none from 221.3.131.110: 7 Time(s)
admin/password from 221.3.131.110: 7 Time(s)
administrator/none from 189.17.83.180: 3 Time(s)
administrator/password from 189.17.83.180: 3 Time(s)
agata/none from 189.17.83.180: 3 Time(s)
agata/password from 189.17.83.180: 3 Time(s)
alexandre/none from 189.17.83.180: 2 Time(s)
alexandre/password from 189.17.83.180: 2 Time(s)
bret/none from 218.61.13.91: 1 Time(s)
bret/password from 218.61.13.91: 1 Time(s)
demouser/none from 218.61.13.91: 1 Time(s)
demouser/password from 218.61.13.91: 1 Time(s)
fernando/none from 218.61.13.91: 2 Time(s)
fernando/password from 218.61.13.91: 2 Time(s)
info/none from 218.61.13.91: 1 Time(s)
info/password from 218.61.13.91: 1 Time(s)
joan/none from 189.17.83.180: 4 Time(s)
joan/password from 189.17.83.180: 4 Time(s)
johan/none from 189.17.83.180: 4 Time(s)
johan/password from 189.17.83.180: 4 Time(s)
joseluis/none from 189.17.83.180: 1 Time(s)
joseluis/password from 189.17.83.180: 1 Time(s)
mike/none from 218.61.13.91: 1 Time(s)
mike/password from 218.61.13.91: 1 Time(s)
oracle/none from 218.61.13.91: 1 Time(s)
oracle/password from 218.61.13.91: 1 Time(s)
raimundo/none from 189.17.83.180: 4 Time(s)
raimundo/password from 189.17.83.180: 4 Time(s)
sebastian/none from 189.17.83.180: 4 Time(s)
sebastian/password from 189.17.83.180: 4 Time(s)
**Unmatched Entries**
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
---------------------- SSHD End -------------------------
--------------------- Syslogd Begin ------------------------
Syslogd started 1 Time(s)
---------------------- Syslogd End -------------------------
------------------ Disk Space --------------------
/dev/hda3 72G 53G 16G 77% /
/dev/hda1 92M 6.3M 81M 8% /boot
###################### LogWatch End #########################
More information about the Sysadmin
mailing list