andy’s blog

Archive for the 'security' Category

linux tips: a one liner, who attacked me today?

Monday, January 22nd, 2007

i got pretty tight iptables rules set, and all un desired packets are logged through ulog. below is one liner command(s) to check who ‘attacked’ (not exactly attack, there were all un wanted packets actually) me today:

for i in `grep “PROTO=UDP” /var/log/ulog/syslogemu.log | sed “s/^.*SRC=//g” | sed “s/DST=.*$//g” | sort | uniq` ; do echo `grep $i /var/log/ulog/syslogemu.log | wc -l ` ” ” $i >> attacker.txt ; done ; sort -r -n -k 1 attacker.txt > tmp ; mv tmp attacker.txt

This is a preview of linux tips: a one liner, who attacked me today?. Read the full post (172 words, estimated 41 secs reading time)

Bookmark to:

Add 'linux tips: a one liner, who attacked me today?' to Del.icio.us

Add 'linux tips: a one liner, who attacked me today?' to digg

Add 'linux tips: a one liner, who attacked me today?' to FURL

Add 'linux tips: a one liner, who attacked me today?' to Technorati

Add 'linux tips: a one liner, who attacked me today?' to Yahoo My Web

Add 'linux tips: a one liner, who attacked me today?' to Google Bookmarks

Posted in security | 1 Comment »

Categories

Archives

Meta

Archive for the 'security' Category

linux tips: a one liner, who attacked me today?