Hello,
I am new on perl and want to do one script who will ask for the name of the log file to analyse and will give the statictics :
1- the covered period of the log (start-end) by date and hours;
2- the total number of lines (traces) foreach adress;
3-the total numbers of traces for each service;
4-the total number of connections pop, ssh and imap;
5- the list of addresses that made a ssh connection and how many for each
6- list of adresses that sent an email by sendmail and how many for each
example of log to ananyle : - Jan 13 04:05:43 client.IRO.UMontreal.CA sendmail[22674]: i0D95hr8022674: from=root, size=271, class=0, nrcpts=1,
-
msgid=<200401130905.i0D95hr8022674@client.IRO.UMontreal.CA>,relay=root@localhost
-
Jan 13 04:05:44 client.IRO.UMontreal.CA sendmail[22674]: i0D95hr8022674: to=root, ctladdr=root (0/1), delay=00:00:01,
-
mailer=relay, pri=30271, relay=[127.0.0.1], dsn=2.0.0, stat=Sent (i0D95hEt022675 Message accepted for delivery)
-
Jan 13 04:05:45 server.IRO.UMontreal.CA sendmail[22627]: i0D95jQ6022627: from=<root@gamma.IRO.umontreal.ca>,
-
size=750, class=0, nrcpts=1,msgid=<200401130905.i0D95hr8022674@client.IRO.UMontreal.CA>,
-
proto=ESMTP, daemon=MTA, relay=client.IRO.UMontreal.CA [132.204.24.102]
-
Jan 13 04:08:20 server.IRO.UMontreal.CA sendmail[23390]: i0D98KQ6023390:<cpm2000@IRO.UMontreal.CA>...
-
User unknown
-
Jan 13 04:12:41 server.IRO.UMontreal.CA ipop3d[26735]: pop3 service init from 132.204.24.100
-
Jan 13 04:12:41 server.IRO.UMontreal.CA ipop3d[26735]: Logout user=??? host=server.IRO.UMontreal.CA [132.204.24.100]
-
Jan 13 04:12:42 server.IRO.UMontreal.CA imapd[26748]: imap service init from 132.204.24.100
-
Jan 13 04:12:42 server.IRO.UMontreal.CA imapd[26748]: Logout user=??? host=server.IRO.UMontreal.CA [132.204.24.100]
-
Jan 13 04:13:58 server.IRO.UMontreal.CA sudo: fmserver : TTY=none ; PWD=/home/fmserver/bin ; USER=root ;
-
COMMAND=/bin/du -sk /home/ouimet
-
Jan 13 04:15:27 alpha.IRO.UMontreal.CA sshd2[412]: connection from "132.204.24.100"
I start my script with this code : - #!/usr/bin/perl
-
print "Gime me the filename";
-
chop ($name = <STDIN>);
-
my @file = $name;
-
open(LOG,"@file") or die "Unable to open logfile:$!\n";
-
while(<LOG>){
-
my @lines = <LOG>;
-
foreach $ligne (@lignes)
-
{ }
-
close(LOG);
4  2116  eWish 971
Recognized Expert Contributor
What kind of log file is this? Basically you will want to loop through the file and split each line into the various chunks of data. Look into the split() function. You will need a common delimiter (ie: whitespace, tab, pipe( | ), comma ( , ) and so on.). Then either use a hash to store the data or an array foreach of the various points of interest.
You could also search CPAN for modules that might handle this task already.
--Kevin
KevinADC 4,059
Recognized Expert Specialist
1- the covered period of the log (start-end) by date and hours;
2- the total number of lines (traces) foreach adress;
3-the total numbers of traces for each service;
4-the total number of connections pop, ssh and imap;
5- the list of addresses that made a ssh connection and how many for each
6- list of adresses that sent an email by sendmail and how many for each
What have you tried so far? Where are you stuck? Do you have any idea how to start writing code to do any of the things you listed?
Hello,
Let me explain more what am trying to do.
I have a log file who contains these lines below : - Jan-13 04:12:41 server.alpha.allo.com. ipop3d[26735]: pop3 service init from 132.204.24.100
-
Jan-13 04:12:42 server.alpha.allo.com. imapd[26748]: imap service init from 132.204.24.100
-
Jan-13 04:05:44 client.alpha.allo.com sendmail[22674]: i0D95hr8022674: to=root, ctladdr=root (0/1), delay=00:00:01,
-
mailer=relay, pri=30271, relay=[127.0.0.1], dsn=2.0.0, stat=Sent (i0D95hEt022675 Message accepted for delivery)
-
Jan-13 04:15:27 Andre.alpha.allo.com sshd2[412]: connection from "132.204.24.100"
And I want to creat a script who will give me the informations below :
1- Home many lines
2-the start and end time of the log with date and time
3-How nany lines (traces) of each service
4-How many connexion of POP3, SSH and IMAP do have my log
5-The list of adresses(email) who made a SSH connexion anh how many each
6-the list of adresses (email) who sent an email true sendmail.
And all theses results I wnat to put it on a txt file and sent it by email (using sendmail) to the mail adress contained in the SYSADMIN.
I know you will not do all these things but I really need help, I am not so good in perl and have to finish this work, I really need help I start with the code bellow
Any suggestion idea is welcome, so many days now am reading lot of book and searching is the only thing left to finish my thing
Thanks in advance , here is my start code : - #!/usr/bin/perl
-
use strict; use warnings;
-
-
open my $inputfh, '<', $inputfilename
-
or die "$!\n";
-
-
my %hostcount;
-
-
while (my $line = <$inputfh>) {
-
my @data = split /\s+/, $line;
-
my $host = $data[2];
-
$hostcount{$host} += 1;
-
}
-
-
print map { "$_ $hostcount{$_}\n" } sort keys %hostcount;
eWish 971
Recognized Expert Contributor
Please do not start a new thread when you already have a thread started on the same topic and issue. I have merged the threads.
Thank You,
--Kevin
Sign in to post your reply or Sign up for a free account.
Similar topics | |
by: Johan Holst Nielsen |
last post by:
Hi,
Is there any Python packages to analyse or get some information out of
an PDF document...
Like where the text are placed - what text are placed - fonts, embedded
PDFs/fonts/images etc.
Please let me know :)
|
by: Troll |
last post by:
Hi,
I need to write a script which reads some data and reports the findings.
Just to give you an idea the structure is similar to the following.
Data input example:
HEADING 1
**********
ColumnA ColumnB ColumnC ColumnD ColumnE
|
by: Patrick Fischer |
last post by:
Hello
Hello I looks for a possibility to analyse html while browsing.
Like a DOM Inspector.
While the page is loading the analyser check the page, make a DOM tree
and I can get the DOM tree.
Is there a Browser extending for Firefox oder Mozilla?
|
by: Phil Endecott |
last post by:
Dear PostgreSQL experts,
This is with version 7.4.2.
My database has grown a bit recently, mostly in number of tables but
also their size, and I started to see ANALYSE failing with this message:
WARNING: out of shared memory
ERROR: out of shared memory
HINT: You may need to increase max_locks_per_transaction.
|
by: novice |
last post by:
Hi geeks,
Can any body explain me how to analyse int the
pollowing code
This is the question I was asked in the interview...
char *s ={ "hello", "basic", "world", "program"};
char **sPtr = { s+3, s+2, s+1, s };
| | |
by: =?ISO-8859-1?Q?Konrad_M=FChler?= |
last post by:
Hallo,
ich bin auf der Suche nach einem Tool, mit dem ich unter Visual Studio 7
oder 8 eine Performance Analyse auf meinem Code durchführen kann, um zu
ermitteln, wo wieviel Zeit verloren geht.
Ich hab bisher nur die sündhaft teuren Produkte von DevPartner gefunden.
Gibt es billigere oder gar kostenlose/OpenSource Tools, mit denen ich
die Aufgabe lösen könnte?
Habt vielen Dank
|
by: Petr Jakes |
last post by:
On the local radio station here in the Czech they announced simple
contest:
If listeners will hear Elton John's Sacrifice followed immediately by
Madonna's Frozen they have to call to the broadcasting. First caller
will get some price.
I am just thinking about the concept how to analyse music stream form
the PC radio card to get the signal: "first tones of Frozen were
played after Sacrifice, call to the studio" :-)
|
by: Naha |
last post by:
Hi,
I am starting a new project where I have to create a office monitoring system, whereby I need to capture images from a webcam and analyse these images using Java advanced imaging in order to determine if there are people in the images. Can someone please give me some guidance on how to do this, I am completely new to Java Advanced imaging!!!! Please...
|
by: ramyamuthusamy |
last post by:
Hi
I want to know how to analyse the network traffic using java,,
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However, people are often confused as to whether an ONU can Work As a Router. In this blog post, we’ll explore What is ONU, What Is Router, ONU & Router’s main usage, and What is the difference between ONU and Router. Let’s take a closer look !
Part I. Meaning of...
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can effortlessly switch the default language on Windows 10 without reinstalling. I'll walk you through it.
First, let's disable language synchronization. With a Microsoft account, language settings sync across devices. To prevent any complications,...
| | |
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed.
This is as boiled down as I can make it.
Here is my compilation command:
g++-12 -std=c++20 -Wnarrowing bit_field.cpp
Here is the code in...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the choice of these technologies. I'm particularly interested in Zigbee because I've heard it does some...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules.
He will explain when you may want to use classes instead of User Defined Types (UDT). For example, to manage the data in unbound forms.
Adolph will...
|
by: conductexam |
last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one.
At the time of converting from word file to html my equations which are in the word document file was convert into image.
Globals.ThisAddIn.Application.ActiveDocument.Select();...
|
by: TSSRALBI |
last post by:
Hello
I'm a network technician in training and I need your help.
I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs.
The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols.
I succeeded, with both firewalls in the same network. But I'm wondering if it's possible to do the same thing, with 2 Pfsense firewalls...
|
by: adsilva |
last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
| | |
by: 6302768590 |
last post by:
Hai team
i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
| |
