rpert/log_analysis
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Initial cross-server log inventory + anomaly scan

Browse Source 
- 10 hosts (mo1, ams, ams2, ro1, ca1, ca2, ca3, fr1, sony, termux)
- discover-logs.sh: portable inventory (Linux/FreeBSD/Termux)
- scan-anomalies.sh: ERROR/WARN/CRITICAL counts + journalctl + kubectl
- run-all.sh: parallel SSH fan-out
- build-summary.py: aggregates into reports/SUMMARY.md
- 5 HIGH-severity findings identified on ro1 (apache scanner traffic, mount_monitor warnings)
This commit is contained in:
rpert
2026-04-10 21:49:17 +00:00
parent cabf4c587f
commit e96a8b03fc
26 changed files with 1636 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

73
logs/inventory/ams2.csv Normal file
View File

@@ -0,0 +1,73 @@
"/var/log/auth.log",663845,"","auth.log"
"/var/log/auth.log.0.bz2",71672,"","auth.log.0.bz2"
"/var/log/auth.log.1.bz2",69293,"","auth.log.1.bz2"
"/var/log/auth.log.2.bz2",65703,"","auth.log.2.bz2"
"/var/log/auth.log.3.bz2",72685,"","auth.log.3.bz2"
"/var/log/auth.log.4.bz2",73035,"","auth.log.4.bz2"
"/var/log/auth.log.5.bz2",70234,"","auth.log.5.bz2"
"/var/log/auth.log.6.bz2",65569,"","auth.log.6.bz2"
"/var/log/borg-backup.log",64409,"","borg-backup.log"
"/var/log/borg/backup-20260223.log",17591,"","borg"
"/var/log/borg/backup-20260224.log",3325,"","borg"
"/var/log/borg/backup-20260225.log",3651,"","borg"
"/var/log/borg/backup-20260226.log",22157,"","borg"
"/var/log/borg/backup-20260227.log",4416,"","borg"
"/var/log/borg/backup-20260228.log",4062,"","borg"
"/var/log/borg/backup-20260301.log",4371,"","borg"
"/var/log/borg/backup-20260302.log",4545,"","borg"
"/var/log/borg/backup-20260303.log",4410,"","borg"
"/var/log/borg/backup-20260304.log",4545,"","borg"
"/var/log/borg/backup-20260305.log",4545,"","borg"
"/var/log/borg/backup-20260306.log",4545,"","borg"
"/var/log/borg/backup-20260307.log",4545,"","borg"
"/var/log/borg/backup-20260308.log",4719,"","borg"
"/var/log/borg/backup-20260309.log",4967,"","borg"
"/var/log/borg/backup-20260310.log",4926,"","borg"
"/var/log/borg/backup-20260311.log",6186,"","borg"
"/var/log/borg/backup-20260312.log",3690,"","borg"
"/var/log/borg/backup-20260313.log",3690,"","borg"
"/var/log/borg/backup-20260314.log",3822,"","borg"
"/var/log/borg/backup-20260315.log",5292,"","borg"
"/var/log/borg/backup-20260316.log",3109,"","borg"
"/var/log/borg/backup-20260317.log",5647,"","borg"
"/var/log/borg/backup-20260318.log",4969,"","borg"
"/var/log/borg/backup-20260319.log",5398,"","borg"
"/var/log/borg/backup-20260320.log",5269,"","borg"
"/var/log/borg/backup-20260321.log",5291,"","borg"
"/var/log/borg/backup-20260322.log",5255,"","borg"
"/var/log/borg/backup-20260323.log",5249,"","borg"
"/var/log/borg/backup-20260324.log",5386,"","borg"
"/var/log/borg/backup-20260325.log",5386,"","borg"
"/var/log/borg/backup-20260326.log",5478,"","borg"
"/var/log/borg/backup-20260327.log",11201,"","borg"
"/var/log/borg/backup-20260328.log",5834,"","borg"
"/var/log/borg/backup-20260329.log",5527,"","borg"
"/var/log/borg/backup-20260330.log",3996,"","borg"
"/var/log/borg/backup-20260331.log",3862,"","borg"
"/var/log/borg/backup-20260401.log",3915,"","borg"
"/var/log/borg/backup-20260402.log",3915,"","borg"
"/var/log/borg/backup-20260403.log",7991,"","borg"
"/var/log/borg/backup-20260404.log",5688,"","borg"
"/var/log/borg/cron.log",265522,"","borg"
"/var/log/daemon.log",662414,"","daemon.log"
"/var/log/daemon.log.0.bz2",53998,"","daemon.log.0.bz2"
"/var/log/daemon.log.1.bz2",53935,"","daemon.log.1.bz2"
"/var/log/daemon.log.2.bz2",52538,"","daemon.log.2.bz2"
"/var/log/daemon.log.3.bz2",54597,"","daemon.log.3.bz2"
"/var/log/daemon.log.4.bz2",54054,"","daemon.log.4.bz2"
"/var/log/debug.log",653461,"","debug.log"
"/var/log/debug.log.0.bz2",47990,"","debug.log.0.bz2"
"/var/log/debug.log.1.bz2",48771,"","debug.log.1.bz2"
"/var/log/debug.log.2.bz2",48903,"","debug.log.2.bz2"
"/var/log/debug.log.3.bz2",48640,"","debug.log.3.bz2"
"/var/log/debug.log.4.bz2",49680,"","debug.log.4.bz2"
"/var/log/devd.log",59,"","devd.log"
"/var/log/dmesg.today",0,"","dmesg.today"
"/var/log/dmesg.yesterday",106,"","dmesg.yesterday"
"/var/log/messages",663378,"","messages"
"/var/log/ppp.log",59,"","ppp.log"
"/var/log/utx.log",854,"","utx.log"
"/var/log/utx.log.0",4916,"","utx.log.0"
"/var/log/utx.log.1",20121,"","utx.log.1"
"/var/log/utx.log.2",6270,"","utx.log.2"
"/var/log/wg-restart.log",899,"","wg-restart.log"
1 /var/log/auth.log 663845 auth.log
2 /var/log/auth.log.0.bz2 71672 auth.log.0.bz2
3 /var/log/auth.log.1.bz2 69293 auth.log.1.bz2
4 /var/log/auth.log.2.bz2 65703 auth.log.2.bz2
5 /var/log/auth.log.3.bz2 72685 auth.log.3.bz2
6 /var/log/auth.log.4.bz2 73035 auth.log.4.bz2
7 /var/log/auth.log.5.bz2 70234 auth.log.5.bz2
8 /var/log/auth.log.6.bz2 65569 auth.log.6.bz2
9 /var/log/borg-backup.log 64409 borg-backup.log
10 /var/log/borg/backup-20260223.log 17591 borg
11 /var/log/borg/backup-20260224.log 3325 borg
12 /var/log/borg/backup-20260225.log 3651 borg
13 /var/log/borg/backup-20260226.log 22157 borg
14 /var/log/borg/backup-20260227.log 4416 borg
15 /var/log/borg/backup-20260228.log 4062 borg
16 /var/log/borg/backup-20260301.log 4371 borg
17 /var/log/borg/backup-20260302.log 4545 borg
18 /var/log/borg/backup-20260303.log 4410 borg
19 /var/log/borg/backup-20260304.log 4545 borg
20 /var/log/borg/backup-20260305.log 4545 borg
21 /var/log/borg/backup-20260306.log 4545 borg
22 /var/log/borg/backup-20260307.log 4545 borg
23 /var/log/borg/backup-20260308.log 4719 borg
24 /var/log/borg/backup-20260309.log 4967 borg
25 /var/log/borg/backup-20260310.log 4926 borg
26 /var/log/borg/backup-20260311.log 6186 borg
27 /var/log/borg/backup-20260312.log 3690 borg
28 /var/log/borg/backup-20260313.log 3690 borg
29 /var/log/borg/backup-20260314.log 3822 borg
30 /var/log/borg/backup-20260315.log 5292 borg
31 /var/log/borg/backup-20260316.log 3109 borg
32 /var/log/borg/backup-20260317.log 5647 borg
33 /var/log/borg/backup-20260318.log 4969 borg
34 /var/log/borg/backup-20260319.log 5398 borg
35 /var/log/borg/backup-20260320.log 5269 borg
36 /var/log/borg/backup-20260321.log 5291 borg
37 /var/log/borg/backup-20260322.log 5255 borg
38 /var/log/borg/backup-20260323.log 5249 borg
39 /var/log/borg/backup-20260324.log 5386 borg
40 /var/log/borg/backup-20260325.log 5386 borg
41 /var/log/borg/backup-20260326.log 5478 borg
42 /var/log/borg/backup-20260327.log 11201 borg
43 /var/log/borg/backup-20260328.log 5834 borg
44 /var/log/borg/backup-20260329.log 5527 borg
45 /var/log/borg/backup-20260330.log 3996 borg
46 /var/log/borg/backup-20260331.log 3862 borg
47 /var/log/borg/backup-20260401.log 3915 borg
48 /var/log/borg/backup-20260402.log 3915 borg
49 /var/log/borg/backup-20260403.log 7991 borg
50 /var/log/borg/backup-20260404.log 5688 borg
51 /var/log/borg/cron.log 265522 borg
52 /var/log/daemon.log 662414 daemon.log
53 /var/log/daemon.log.0.bz2 53998 daemon.log.0.bz2
54 /var/log/daemon.log.1.bz2 53935 daemon.log.1.bz2
55 /var/log/daemon.log.2.bz2 52538 daemon.log.2.bz2
56 /var/log/daemon.log.3.bz2 54597 daemon.log.3.bz2
57 /var/log/daemon.log.4.bz2 54054 daemon.log.4.bz2
58 /var/log/debug.log 653461 debug.log
59 /var/log/debug.log.0.bz2 47990 debug.log.0.bz2
60 /var/log/debug.log.1.bz2 48771 debug.log.1.bz2
61 /var/log/debug.log.2.bz2 48903 debug.log.2.bz2
62 /var/log/debug.log.3.bz2 48640 debug.log.3.bz2
63 /var/log/debug.log.4.bz2 49680 debug.log.4.bz2
64 /var/log/devd.log 59 devd.log
65 /var/log/dmesg.today 0 dmesg.today
66 /var/log/dmesg.yesterday 106 dmesg.yesterday
67 /var/log/messages 663378 messages
68 /var/log/ppp.log 59 ppp.log
69 /var/log/utx.log 854 utx.log
70 /var/log/utx.log.0 4916 utx.log.0
71 /var/log/utx.log.1 20121 utx.log.1
72 /var/log/utx.log.2 6270 utx.log.2
73 /var/log/wg-restart.log 899 wg-restart.log