|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: extracting IPs from mail log
From: Bill Landry (billl
pointshare.com)
Date: Sat Oct 02 2004 - 14:04:01 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
----- Original Message -----
From: "Robin Lynn Frank" <rlfrankparadigm-omega.com>
>
> We've gotten hit by a couple of poop storms where 2000 to 3000 emails
> are sent per hour to spamtrap or old dated addresses.
>
> They come for a boatload of sources and I was thinking it would be handy
> to have a script that extracted the IPs from mail sent to these
> addresses for conversion to an access map.
>
> Anyone know where I might find one before I try to re-invnet the wheel?
> (Google didn't seem to provide anything.)
What about something as simple as:
grep " connect.*example\.com" /var/log/maillog | cut -d "[" -f3 | tr -d "]"
| sort | uniq > access-map
Bill
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]