Logwatch for linode01.ovirt.org (Linux)
logwatch at lists.ovirt.org
logwatch at lists.ovirt.org
Sun Nov 8 08:41:18 UTC 2015
################### Logwatch 7.3.6 (05/19/07) ####################
Processing Initiated: Sun Nov 8 03:41:18 2015
Date Range Processed: yesterday
( 2015-Nov-07 )
Period is day.
Detail Level of Output: 0
Type of Output: unformatted
Logfiles for Host: linode01.ovirt.org
##################################################################
--------------------- httpd Begin ------------------------
A total of 3 sites probed the server
162.13.135.168
8.29.155.156
94.23.249.159
Requests with error response codes
404 Not Found
/: 577 Time(s)
//index.php?option=com_jdownloads&Itemid=0&view=upload: 2 Time(s)
//wp-admin/admin-ajax.php: 2 Time(s)
//wp-admin/admin-ajax.php?action=revolutio ... ./wp-config.php: 1 Time(s)
//wp-admin/admin-ajax.php?action=revslider ... ./wp-config.php: 3 Time(s)
//wp-admin/includes/themes.php?x1: 1 Time(s)
//wp-admin/options-link.php?x1: 1 Time(s)
/__mailman/listinfo/users: 1 Time(s)
/admin.php: 7 Time(s)
/admin/: 6 Time(s)
/admin/board: 3 Time(s)
/admin/login.php: 6 Time(s)
/administrator/: 1 Time(s)
/administrator/index.php: 6 Time(s)
/apple-touch-icon-120x120-precomposed.png: 1 Time(s)
/apple-touch-icon-120x120.png: 1 Time(s)
/apple-touch-icon-precomposed.png: 3 Time(s)
/apple-touch-icon.png: 3 Time(s)
/assets/modules/evogallery/js/uploadify/uploadify.php: 8 Time(s)
/bitrix/admin/index.php?lang=en: 6 Time(s)
/blog/wp-admin/: 8 Time(s)
/board: 6 Time(s)
/category/news/feed: 1 Time(s)
/category/news/feed/: 1 Time(s)
/data/admin/sky.php: 1 Time(s)
/dxyylc/1ndex.php: 1 Time(s)
/dxyylc/md5.php: 1 Time(s)
/favicon.ico: 277 Time(s)
/images/swfupload/images/uploadye.php: 1 Time(s)
/include/data/fonts/uddatasql.php: 1 Time(s)
/include/helpers/cookie.helpea.php: 1 Time(s)
/include/helperss/filter.helpear.php: 1 Time(s)
/licensing: 1 Time(s)
/listinfo/board: 3 Time(s)
/mailm: 1 Time(s)
/mailman/lis: 1 Time(s)
/mailman/listin: 1 Time(s)
/old/wp-admin/: 8 Time(s)
/pipermail/devel/2012-january/000483.html: 1 Time(s)
/pipermail/infra/2012-November/tiki-register.php: 2 Time(s)
/pipermail/infra/2012-November/wp-content/ ... i.com%2Fbad.php: 1 Time(s)
/pipermail/infra/2012-November/xmlrpc.php: 2 Time(s)
/pipermail/infra/2013-December/tiki-register.php: 4 Time(s)
/pipermail/infra/2013-February/wp-content/ ... i.com%2Fbad.php: 6 Time(s)
/pipermail/infra/2013-February/xmlrpc.php: 7 Time(s)
/pipermail/infra/2013-January/xmlrpc.php: 2 Time(s)
/pipermail/infra/2013-July/tiki-register.php: 1 Time(s)
/pipermail/infra/2013-June/xmlrpc.php: 6 Time(s)
/pipermail/infra/2013-March/tiki-register.php: 2 Time(s)
/pipermail/infra/2013-March/wp-content/the ... i.com%2Fbad.php: 6 Time(s)
/pipermail/infra/2013-March/xmlrpc.php: 6 Time(s)
/pipermail/infra/2013-May/tiki-register.php: 14 Time(s)
/pipermail/infra/2014-December/tiki-register.php: 1 Time(s)
/pipermail/infra/2014-December/xmlrpc.php: 6 Time(s)
/pipermail/infra/2014-November/tiki-register.php: 1 Time(s)
/pipermail/infra/2014-September/tiki-register.php: 1 Time(s)
/pipermail/infra/2015-April//wp-admin/admi ... ./wp-config.php: 4 Time(s)
/pipermail/infra/2015-April//wp-admin/admin-ajax.php: 1 Time(s)
/pipermail/infra/2015-April//wp-admin/includes/themes.php?x1: 1 Time(s)
/pipermail/infra/2015-April//wp-admin/options-link.php?x1: 1 Time(s)
/pipermail/infra/2015-April/009473.html&am ... ./wp-config.php: 2 Time(s)
/pipermail/infra/2015-August/wp-admin/admi ... ./wp-config.php: 2 Time(s)
/pipermail/infra/2015-February/009120.html+%28%29: 1 Time(s)
/pipermail/infra/2015-February/tiki-register.php: 1 Time(s)
/pipermail/infra/2015-February/xmlrpc.php: 1 Time(s)
/pipermail/infra/2015-July//index.php?opti ... d=0&view=upload: 3 Time(s)
/pipermail/kimchi-de: 1 Time(s)
/pipermail/users/2012-August/008911.html/trackback/: 1 Time(s)
/pipermail/users/2013-October/017499.html/trackback/: 1 Time(s)
/pipermail/users/2013-february/012335.html: 1 Time(s)
/pipermail/users/2014-April/023401.html/trackback/: 1 Time(s)
/pipermail/users/2014-August/026535.html/trackback/: 1 Time(s)
/pipermail/users/2014-August/026884.html/trackback/: 1 Time(s)
/pipermail/users/2014-November/028961.html/trackback/: 1 Time(s)
/plus/360.php: 1 Time(s)
/plus/90sec.php: 1 Time(s)
/plus/ad_js.php?aid=8888: 1 Time(s)
/plus/av.php: 1 Time(s)
/plus/bakup.php: 1 Time(s)
/plus/cere.php: 1 Time(s)
/plus/e7xue.php: 1 Time(s)
/plus/laobiao.php: 1 Time(s)
/plus/long.php: 1 Time(s)
/plus/mybak.php: 1 Time(s)
/plus/myjs.php: 1 Time(s)
/plus/mytag_j.php?aid=6022: 1 Time(s)
/plus/mytag_js.php?aid=511348: 1 Time(s)
/plus/mytag_js.php?aid=8080: 1 Time(s)
/plus/mytag_js.php?aid=9090: 1 Time(s)
/plus/mytag_js.php?aid=9191: 1 Time(s)
/plus/mytag_js.php?aid=9527: 1 Time(s)
/plus/xsvip.php: 1 Time(s)
/pub/ovirt-3.5-pre/iso/ovirt-guest-tools/o ... tools-3.5_5.iso: 1 Time(s)
/pub/ovirt-3.5-pre/iso/ovirt-live-el6-3.5.0_rc2.iso: 1 Time(s)
/pub/ovirt-3.5-pre/rpm/el7/repodata/2efbca ... ther.sqlite.bz2: 20 Time(s)
/robots.txt: 170 Time(s)
/templets/plus/sky.php: 1 Time(s)
/test/wp-admin/: 8 Time(s)
/uploads/allimg/xm.php: 1 Time(s)
/user/: 6 Time(s)
/wordpress/wp-admin/: 9 Time(s)
/wp-admin/: 8 Time(s)
/wp-admin/admin-ajax.php?action=revslider_ ... ./wp-config.php: 2 Time(s)
/wp-content/themes/crisp/timthumb.php?webs ... i.com%2Fbad.php: 1 Time(s)
/wp-content/themes/edupress/scripts/timthu ... i.com%2Fbad.php: 6 Time(s)
/wp-content/themes/flashnews/flashnews/thu ... i.com%2Fbad.php: 4 Time(s)
/wp-content/themes/premiumnews/thumb.php?w ... i.com%2Fbad.php: 1 Time(s)
/wp-login.php: 7 Time(s)
/wp/wp-admin/: 8 Time(s)
/wpinfos.php: 8 Time(s)
/wpinfos.php?osc=cm0gLXJmIHp1Yi4qOyBybSAtc ... SAtcmYgenViLio=: 16 Time(s)
/xiaolei.php: 1 Time(s)
/xmlrpc.php: 28 Time(s)
501 Not Implemented
null: 87 Time(s)
---------------------- httpd End -------------------------
--------------------- Postfix Begin ------------------------
339 *Warning: Pre-queue content-filter connection overload
23 Miscellaneous warnings
3.905M Bytes accepted 4,094,680
36.408M Bytes delivered 38,176,694
======== ================================================
385 Accepted 85.75%
64 Rejected 14.25%
-------- ------------------------------------------------
449 Total 100.00%
======== ================================================
12 Reject relay denied 18.75%
6 Reject HELO/EHLO 9.38%
46 Reject unknown user 71.88%
-------- ------------------------------------------------
64 Total Rejects 100.00%
======== ================================================
379 4xx Reject recipient address 94.28%
23 4xx Reject sender address 5.72%
-------- ------------------------------------------------
402 Total 4xx Rejects 100.00%
======== ================================================
784 Connections made
53 Connections lost
784 Disconnections
383 Removed from queue
165 Delivered
6557 Sent via SMTP
1 Forwarded
138 Deferred
1848 Deferrals
1 Bounce (local)
18 Bounce (remote)
2 Expired and returned to sender
21 DSNs undeliverable
649 Connection failure (outbound)
3 Timeout (inbound)
2 Numeric hostname
165 Hostname verification errors
40 Enabled PIX workaround
**Unmatched Entries**
1 Nov 7 06:29:07 linode01 postfix/smtp[30753]: 1FDAAC821: Cannot start TLS: handshake failure
1 Nov 7 03:08:53 linode01 postfix/smtp[25323]: SSL_connect error to mail.albasoft.com[80.36.199.64]:25: -1
1 Nov 7 02:43:42 linode01 postfix/smtp[24475]: SSL_connect error to mail.albasoft.com[80.36.199.64]:25: -1
1 Nov 7 22:56:49 linode01 postfix/smtp[20473]: SSL_connect error to mail.albasoft.com[80.36.199.64]:25: -1
1 Nov 7 02:10:59 linode01 postfix/smtp[23617]: SSL_connect error to mail.albasoft.com[80.36.199.64]:25: -1
1 Nov 7 02:50:25 linode01 postfix/smtp[24958]: SSL_connect error to mail.albasoft.com[80.36.199.64]:25: -1
1 Nov 7 03:31:21 linode01 postfix/smtp[26544]: SSL_connect error to tacos.lugy.net[70.85.31.174]:25: -1
1 Nov 7 02:10:59 linode01 postfix/smtp[23617]: DF696C81C: Cannot start TLS: handshake failure
1 Nov 7 15:10:20 linode01 postfix/smtp[10147]: SSL_connect error to mail.albasoft.com[80.36.199.64]:25: -1
1 Nov 7 11:16:22 linode01 postfix/smtp[4854]: SSL_connect error to mail.albasoft.com[80.36.199.64]:25: -1
1 Nov 7 02:40:34 linode01 postfix/smtp[24283]: F3513C81C: Cannot start TLS: handshake failure
1 Nov 7 02:40:34 linode01 postfix/smtp[24283]: SSL_connect error to tacos.lugy.net[70.85.31.174]:25: -1
1 Nov 7 06:29:07 linode01 postfix/smtp[30753]: SSL_connect error to mail.albasoft.com[80.36.199.64]:25: -1
1 Nov 7 02:50:25 linode01 postfix/smtp[24958]: 1D05CC81F: Cannot start TLS: handshake failure
1 Nov 7 19:28:19 linode01 postfix/smtp[15749]: 1BF43C6BC: Cannot start TLS: handshake failure
1 Nov 7 11:16:22 linode01 postfix/smtp[4854]: 143A1C820: Cannot start TLS: handshake failure
1 Nov 7 19:28:19 linode01 postfix/smtp[15749]: SSL_connect error to 163mx02.mxmail.netease.com[220.181.14.150]:25: -1
1 Nov 7 22:56:49 linode01 postfix/smtp[20473]: 88CB5C768: Cannot start TLS: handshake failure
1 Nov 7 03:31:21 linode01 postfix/smtp[26544]: 060A1C81A: Cannot start TLS: handshake failure
1 Nov 7 15:10:20 linode01 postfix/smtp[10147]: 8A03DC7D7: Cannot start TLS: handshake failure
1 Nov 7 02:43:42 linode01 postfix/smtp[24475]: E0FDCC81F: Cannot start TLS: handshake failure
1 Nov 7 03:08:53 linode01 postfix/smtp[25323]: 5C71BC820: Cannot start TLS: handshake failure
---------------------- Postfix End -------------------------
--------------------- SSHD Begin ------------------------
Users logging in through sshd:
mirror:
192.87.102.41: 13 times
Received disconnect:
11: : 19 Time(s)
11: Bye Bye : 788 Time(s)
11: disconnected by user : 13 Time(s)
3: com.jcraft.jsch.JSchException: Auth fail : 12 Time(s)
**Unmatched Entries**
reverse mapping checking getaddrinfo for 30.74.74.218.broad.ls.zj.dynamic.163data.com.cn [218.74.74.30] failed - POSSIBLE BREAK-IN ATTEMPT! : 1 time(s)
Address 66.162.88.202 maps to mail.plunkett-gibson.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! : 1 time(s)
Address 104.223.72.176 maps to 104.223.72.176.static.quadranet.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! : 1 time(s)
Address 62.76.43.203 maps to 62-76-43-203.clodo.ru, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! : 52 time(s)
---------------------- SSHD End -------------------------
--------------------- Sudo (secure-log) Begin ------------------------
==============================================================================
nrpe => root
------------
/sbin/service - 288 Times.
---------------------- Sudo (secure-log) End -------------------------
--------------------- Disk Space Begin ------------------------
Filesystem Size Used Avail Use% Mounted on
/dev/xvda 97G 75G 22G 78% /
---------------------- Disk Space End -------------------------
###################### Logwatch End #########################
More information about the Infra
mailing list