aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorMark Sapiro <mark@msapiro.net>2018-06-15 20:38:59 -0700
committerMark Sapiro <mark@msapiro.net>2018-06-15 20:38:59 -0700
commit850df25914f53eeb1156d2389d92385a88cb216f (patch)
tree3ceaca0bcd83c911a91e2b1dd131e870664dfea0
parente412b9536c325a774e373f9d1fcecb440d6f6aa1 (diff)
downloadmailman2-850df25914f53eeb1156d2389d92385a88cb216f.tar.gz
mailman2-850df25914f53eeb1156d2389d92385a88cb216f.tar.xz
mailman2-850df25914f53eeb1156d2389d92385a88cb216f.zip
Updated contrib/mmdsr for security log.
-rw-r--r--contrib/mmdsr14
1 files changed, 12 insertions, 2 deletions
diff --git a/contrib/mmdsr b/contrib/mmdsr
index bf5e71c9..03a35845 100644
--- a/contrib/mmdsr
+++ b/contrib/mmdsr
@@ -207,6 +207,11 @@
# Updated on: Sun Jun 4 17:12:54 PDT 2017
# Added -a to default (e)grep to account for logs that may
# have non-ascii and be seen as binary.
+#
+# 0.0.28 Update by Mark Sapiro <mark@msapiro.net>
+# Updated on: Fri Jun 15 20:20:36 PDT 2018
+# Added report of new security log.
+# Augmented 0.0.24 to do <letters> as well as <digits>.
###############################################################################
# Set up locations of standard commands, directories, etc....
@@ -275,7 +280,7 @@ MAX_DATA_LINES=100
# Mailman Log files to check for errors.
# No need to specify path, only log file name.
###############################################################################
-ERR_LOGS="error fromusenet locks mischief post qrunner smtp-failure vette"
+ERR_LOGS="error fromusenet locks mischief security post qrunner smtp-failure vette"
###############################################################################
# Mailman Log files to summarize.
@@ -499,6 +504,11 @@ do
echo "------------------------------" >> $TMP
$EGREP -vi '(Login failure with private rosters|Unsub attempt of non-member|Reminder attempt of non-member)' $TMPLOG | $SED 's/^.* ([0-9]*) //' | $SORT | $UNIQ -c | $SORT -nr >> $TMP
+ elif [ "${LOG}" = "security" ] ; then
+
+ echo "" >> $TMP
+ $GREP 'Authorization failed' $TMPLOG | $SED 's/^.* ([0-9]*) //' | $SORT | $UNIQ -c | $SORT -nr >> $TMP
+
elif [ "${LOG}" = "post" ] ; then
$GREP -vi 'success' $TMPLOG | $SED 's/^.* ([0-9]*) //' | $SORT | $UNIQ -c | $SORT -nr >> $TMP
@@ -548,7 +558,7 @@ do
echo "" >> $TMP
echo "Banned Subscriptions" >> $TMP
echo "------------------------------" >> $TMP
- $GREP -i 'banned subscription' $TMPLOG | $AWK '{ print $6 " " $9 }' | $SED -e 's/\+[0-9][0-9]*@/+<digits>@/' | $SORT | $UNIQ -c | $SORT -nr >> $TMP
+ $GREP -i 'banned subscription' $TMPLOG | $AWK '{ print $6 " " $9 }' | $SED -e 's/\+[0-9][0-9]*@/+<digits>@/' -e 's/\+[a-z][a-z]*@/+<letters>@/' | $SORT | $UNIQ -c | $SORT -nr >> $TMP
echo "" >> $TMP
echo "DMARC lookups" >> $TMP