命令:
1、grep “xyz” 路径
grep “2010:18:38:” 20100205-host.access.log-back >> 18.30.txt
2、grep -E “jpg|png|gif” -v 18.30.txt
搜索不包含jpg,png,gif的行,-v是不匹配的意思
find /web/ -mtime -60|grep php
find /web/|grep html|xargs grep twolye
服务器被入侵后的一些日志分析
发表评论
命令:
1、grep “xyz” 路径
grep “2010:18:38:” 20100205-host.access.log-back >> 18.30.txt
2、grep -E “jpg|png|gif” -v 18.30.txt
搜索不包含jpg,png,gif的行,-v是不匹配的意思
find /web/ -mtime -60|grep php
find /web/|grep html|xargs grep twolye