Monitoring Tomcat6 Access Log With Logwatch

I want to monitor tomcat access.log and catalina.out using logwatch.
There are many tutorials on how to implement new log file groups but I couldn't find any example for setting up a filter in /etc/logwatch/scripts/services/ for monitoring the tomcat logs.
Any help is appreciated.
Thanks.


Similar Content



Sending Mail From Command Line

I searched the forums for my title and I am not finding exactly what I am looking for. I am not using a program to send mail, such as Thunderbird or whatever. I simply want to be able to send mail from my Ubuntu 14.04 DESKTOP version for logging. I use a program called Logwatch (used alot in RHEL or CentOS) to monitor the server itself. The program sends mail to the root user account on the machine, which I can check and see, and within the program conf file, I can add an external email address, but it never sends.

I'm familiar with the SMTP concept of sending mail, outgoing mail server authentication, etc. I don't care to run this box as an SMTP server, but I understand that I need some sort of SMTP or MTA program to send mail into the real world. I tried Postfix but couldn't get that to work, and the Logwatch program wants to use sendmail, so I installed that but I am having the same issue. I am sure it is a step I am missing.

I also can't figure out how to get the 'mail' cmd from Terminal to work. I use this command:
Code:
mail -s "test" | /usr/sbin/mail myemail@domain.com

it follows through the subject, CC, body, but when I try to hit either . or CTRL-D, it never sends the email, in fact is does nothing.

I also tried sendmail with this command:
Code:
sendmail -v my@email.com < /dev/null

I was just trying to send a test email. It logs into my SMTP mail server, which I already configured, and it tells me to type out the mail, then end with a "." by itself on a single line. I try this and it just sits there.

I am missing SOMETHING when trying to actually send the mail. I can get it written with subject and body, connected, but it never sends and I am probably missing a / or something.

I did find and follow these instructions, but it still isn't working with sendmail. If I need to go back to Postfix, I can do that, I don't honestly care what I use, I just want some programs such as Logwatch to be able to email me.
http://stackoverflow.com/questions/1...mail-on-ubuntu

Reverse Nat Ssh Tunnel - Open More That One Port?

I will be setting up a few raspberry pi's in various locations, and they will be creating reverse nat ssh tunnels to my ssh server.

I need to set up a monitoring server at the server's location to monitor the raspberry pi's through the ssh server. The monitoring agent that will be installed on the raspberry pi's is communicating with the monitoring server on port 4700.

My question is:

Since I am using reverse nat ssh tunnels to connect on the ssh server, I am guessing that port 4700 will not be opened. If this is true, is there a way to also open port 4700 in that tunnel, so the monitoring server can access the remote agent?

Thanks

Modifying An XML File But Saving A Copy First. Unexpected Results

I've worked with Linux in the past, but mostly Windows. Perhaps someone can explain what I am seeing. This isn't a Linux OS, but Tomcat running under Windows. I'm thinking Linux rules apply here, but if this is the wrong forum, I apologize in advance.

I've got an app that runs under Tomcat. I needed to modify an XML config file to change a variable. The path was \app\tomcat\webapps\asset-manager-web\WEB-INF\am\conf\settings. The file was configParams.xml.

To protect myself from messing things up, I first made a copy of configParams.xml and named it configParams-ORIG.xml. I left this in the same folder as the file I was going to edit. I made the required edits and restarted the application service. The app never recognized the changes. Finally, I moved the configParams-ORIG.xml file to another folder, restarted, and everything worked.

Can someone explain why this is? I do this in Windows all the time. Why does having that original file, renamed, in the same folder cause a problem?

Vgchange -an Command Fail To Work To Inactive VG || Umount Logical Volume Succesfull

Hi All,

umounted all logical volume of tomcatvg successfully.But when tried to deactive Volume group using vgchange command show logical volume are in active state .Need help how to force de-active Volume group .


Actioned perfomed
================
vgchange -an tomcatvg


[root@porsche ~]# vgs
VG #PV #LV #SN Attr VSize VFree
tomcatvg 1 10 0 wz--n- 95.38g 8.88g


[root@porsche ~]# cat /etc/fstab | grep -i fs_opt_tomcat
/dev/tomcatvg/fs_opt_tomcat /opt/tomcat ext4 defaults 1 2
[root@porsche ~]#

fuser -km /opt/tomcat
umount /opt/tomcat

Still I could find logical volume in active state

[root@porsche ~]# lvs | grep -i appvg
fs_opt_tomcat tomcatvg -wi-ao---- 5.00g

Regards
Arun

Rsync: Opendir "/db/pluto/test" Failed: Permission Denied (13)

I am getting the below error when try to run a perl script which copy mysql db using resync.

Could anyone please help



Creating log directories
Initializing data
WARNING: Use of this system is restricted and monitored!
This system is for the use of authorized users only. Individuals using
this computer system without authority, or in excess of their
authority, are subject to having all of their activities on this system
monitored and recorded by system personnel. In the course of
monitoring individuals improperly using this system, or in the course
of system maintenance, the activities of authorized users may also
be monitored. Anyone using this system expressly consents to such
monitoring and is advised that if such monitoring reveals possible
evidence of criminal activity, system personnel may provide the
evidence of such monitoring to law enforcement officials.
receiving incremental file list
rsync: opendir "/db/pluto/test" failed: Permission denied (13)
sent 12 bytes received 130 bytes 284.00 bytes/sec
total size is 0 speedup is 0.00
rsync error: some files/attrs were not transferred (see previous errors) (code 2 3) at main.c(1505) [generator=3.0.6]
Aborting : Database copy from primary to secondary failed.

Need Help Create Ssh User Who Can Only Access One Directory

hi linus guru,


Need your help, I would like to create ssh user that only has access to one folder

existing Directory: /home/aps/ logs



user can only have read only access on logs folder

Thanks, appreciate your help..

Monitoring The Execution Of POSIX Threads

I work on Red-Hat Enterprice OS.
I run one process which generates many POSIX threads.
How can I monitor/trace their execution.

Best regards,
Yehuda

Samba Configuration Not Letting Me Access Files?

Hey guys, I got samba working and I am able to access my files, however I am now trying to learn security with it. i am pretty much trying to allow certain groups access certain files. if you look at samba group you can see that I have @sambausers group to access sambagroup directory.

I have a user called sambatest01. the user can access "samba users only" but the user can access all of the other files as well. what is a correct set up on the other smb.conf to prevent users from accessing this? I cant seem to find a proper set up


[drivers]
path = /files/drivers
browseable = yes
read only = no
guest ok = no
guest only = no


[samba users only]
path = /files/sambagroup
browseable = yes
read only = no
guest ok = no
guest only = no
write list = @sambausers
valid users = @sambausers

Restrict File Share Access To Only Certain LAN IP Addresses?

Hello
I have a few folders that I would like allow only access to certain ip schema
like for example
-folder "Products" allow access only to 10.10.20.x
-folder "Customers" allow access only to 10.10.21.x

Can this be dome using Samba?

machines connecting are windows machine from different networks coming true vpn

Thank you
-Fred

Squid Proxy Server (Rel 3.1) Getting TCP_DENIED/403 Error In Access.log

I've had this server up and running for over a year and just recently started getting TCP_DENIED/403 in the logs for a site we've been using forever. When users try to access the site they get "web page not available" messages in their browser. I verified the site and all other links on the site our in my white list. If I bypass the proxy it works just fine.

Any help would be appreciated.

Thanks