looking for help on filtering logwatch


Does anyone know how to customize logwatch. Since upgrading to fedora logwatch now gives me to much. it seems like logwatch does not know what to do with jsp and servlet stuff.

the doc does not help me, so hopefully someone can help me

Currently in my log file i am seeing

 A total of 110 sites probed the server ( i have looking in the log file and these are servlet URLS being posted to)

then i see this as well (these are also legit).
 !!!! 63 possible successful probes
    /jsp/menu.jsp?dir=jveydovec&lang=null HTTP Response 200
    /jsp/menu.jsp?dir=afritz&lang=null HTTP Response 200
    /jsp/menu.jsp?dir=tamarawolfe&lang=null HTTP Response 200
    /jsp/menu.jsp?dir=bmckneely&lang=null HTTP Response 200

So I am looking for help on how to filter these out

Who is Participating?
Ok - The way I do it on Linux is through webmin - It has an extensive module for logwatch which can allow you to configure it to your liking.

The upgrade probably just gave you some new filter settings, which you didn't want. You can reconfigure logwatch using the Log Filter Setup :- More detailed info available here: http://www.cequrux.com/support/firewall/node86.htm - You may want to view the 'Previous' article on that page aswell if you're not familiar with Log Filter Setup.
Sorry - wrong link I think, bare with me, i'll find the right one.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.