> I actually have a method to my madness. Each morning I have a cron job > kicks off to process the logs from the day before. The script has a ton > of entires similar to the following: > > grep SYNFINSCAN cb5.txt > synfin-scan.txt > grep -v SYNFINSCAN cb5.txt > cb6.txt > grep FINSCAN cb6.txt > finscan.txt > grep -v FINSCAN cb6.txt > cb7.txt > grep NULLSCAN cb7.txt > nullscan.txt > grep -v NULLSCAN cb7.txt > cb8.txt > grep NMAPXMAS cb8.txt > nmapxmas.txt > grep -v NMAPXMAS cb8.txt > cb9.txt Don't know if you care or not, but you could do this much more efficiently with perl. If you don't want to do that, you can at least avoid the tempfiles by using the surrounding spaces in your patterns, eg. grep " FINSCAN " logfile > finscan.txt -- If you make people think they're thinking, they'll love you; but if you really make them think they'll hate you.
Attachment:
pgp00630.pgp
Description: PGP signature
