swimming
此脚本修改IP,统计用户下的IP地址脚本:
#!/bin/bash
rm -rf /var/log/LandIP`date -d "2 day ago" +%Y%m%d`
rm -rf /var/log/MailCounts`date -d "2 day ago" +%Y%m%d`
egrep "LOGIN" /var/log/maillog.1 | awk '{print $7,$8}'|sed 's/user=\|ip=\[\:\:ffff\:\|\]\|,//g'| egrep -v "=|unknown|FAILED|error" |sort|uniq > /tmp/name.ip
sleep 2s
awk '{print $1}' /tmp/name.ip | sort | uniq > /tmp/name
sleep 2s
for user in `cat /tmp/name`
do
countNum=`grep ${user} /tmp/name.ip | wc -l`
sumnostcoun=`grep ${user} /var/log/maillog.1 | grep -v 'starttls' | grep LOGOUT | awk '{print $14}' | sed -e 's/time=\|,//g' | awk '{sum+=$1}END{print sum}'`
sumstcoun=`grep ${user} /var/log/maillog.1 | grep starttls | awk '{print $13}' | sed -e 's/time=\|,//g' | awk '{sum+=$1}END{print sum}'`
grep ${user} /tmp/name.ip| awk '{print $2}'|tr '\n' '|'| sed "s/^/"${user}\|${countNum}\|"/g"|sed 's/$/\n/g' >> /var/log/LandIP`date -d "1 day ago" +%Y%m%d`
echo ${user}"|"$[countNum+sumnostcoun]"|" >> /var/log/MailCounts`date -d "1 day ago" +%Y%m%d`
done时间统计:
grep rui.wang maillog.2 | grep starttls | awk '{print $13}' | sed -e 's/time=\|,//g' | awk '{sum+=$1}END{print sum}'
grep rui.wang maillog.2 | grep -v 'starttls' | grep LOGOUT | awk '{print $14}' | sed -e 's/time=\|,//g' | awk '{sum+=$1}END{print sum}'
FTP登录脚本:
#!/bin/bash ftp -n<<! open X.X.X.X user vpn ****** binary hash cd /mail_log mkdir `date -d "1 day ago" +%Y-%m-%d` cd `date -d "1 day ago" +%Y-%m-%d` lcd /var/log/ prompt put LandIP`date -d "1 day ago" +%Y%m%d` put MailCounts`date -d "1 day ago" +%Y%m%d` close bye !
No Leanote account ? Sign up now.