If you are scanning your apache error log files for the IDA / Red Code worm, you may want to use something like: in /var/log/httpd cat *err.log | grep 'default.ida' | awk '{print $8 " " $1 " " $2 " " $3 " " $4 " " $5}' | sed s/[][]/" "/g > myreport.txt It's rude but functional. Stefano "Raistlin" Zanero System Administrator Gioco.Net public PGP key block at http://gioco.net/pgpkeys P.S. Thanks Kallisti and Clooney :P ---------------------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
This archive was generated by hypermail 2b30 : Sun Aug 05 2001 - 13:14:51 PDT