Re: Monitoring any changes in /var/log/messages to file
On Fri, 11 Jul 2003 10:57:37 +0200, Sergiusz Michalski wrote:[color=blue]
> Hi!
>
> Maybe you hav any good idea how to detect any new changes maked in
> /var/log/messages and write it to new separate file. Any script???
>
> I've tried to use diff program but I need to have 2 files to compare so I
> don't think that this is an optional solution.[/color]
Untested code follows:
if [ ! -e /tmp/msg.old ] ; then # day1 create reference file
sum /var/log/messages > /tmp/msg.old
fi
sum /var/log/messages > /tmp/msg.sum
diff /tmp/msg.sum msg.old
if [ ! $? ] ; then
cp /var/log/messages /some/where/messages_$(date +%F_%H_%M)
cp /tmp/msg.sum /tmp/msg.old
mail -s "/var/log/messages changed" root < /dev/null
fi
Re: Monitoring any changes in /var/log/messages to file
thats it, thx
Użytkownik "Bit Twister" <BitTwister@localhost.localdomain> napisał w
wiadomości news:slrnbgtiv2.1ui.BitTwister@wb.home...[color=blue]
> On Fri, 11 Jul 2003 10:57:37 +0200, Sergiusz Michalski wrote:[color=green]
> > Hi!
> >
> > Maybe you hav any good idea how to detect any new changes maked in
> > /var/log/messages and write it to new separate file. Any script???
> >
> > I've tried to use diff program but I need to have 2 files to compare so[/color][/color]
I[color=blue][color=green]
> > don't think that this is an optional solution.[/color]
>
> Untested code follows:
>
>
> if [ ! -e /tmp/msg.old ] ; then # day1 create reference file
> sum /var/log/messages > /tmp/msg.old
> fi
>
> sum /var/log/messages > /tmp/msg.sum
> diff /tmp/msg.sum msg.old
> if [ ! $? ] ; then
> cp /var/log/messages /some/where/messages_$(date +%F_%H_%M)
> cp /tmp/msg.sum /tmp/msg.old
> mail -s "/var/log/messages changed" root < /dev/null
> fi[/color]
