File: removeheaders

package info (click to toggle)
logwatch 7.14-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 3,572 kB
  • sloc: perl: 8,290; sh: 354; makefile: 38
file content (49 lines) | stat: -rw-r--r-- 2,234 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
 
########################################################
## Copyright (c) 2008 Kirk Bauer
## Covered under the included MIT/X-Consortium License:
##    http://www.opensource.org/licenses/mit-license.php
## All modifications and contributions by other persons to
## this script are assumed to have been donated to the
## Logwatch project and thus assume the above copyright
## and licensing terms.  If you want to make contributions
## under your own copyright or a different license this
## must be explicitly stated in the contribution an the
## Logwatch project reserves the right to not accept such
## contributions.  If you have made significant
## contributions to this script and want to claim
## copyright please contact logwatch-devel@lists.sourceforge.net.
#########################################################

use strict;

# Removes the beginning of each line of a standard /var/log/messages-style
# logfile or a pattern passed as first argument to this script.

my $RemovePattern = $ARGV[0] || '^... .. ..:..:.. [^ ]* [^\[:]*(?:\[\d*\])?: (?:\[\d+\.\d+\] )?';

while (defined(my $ThisLine = <STDIN>)) {
    # remove verbose syslog-style <facility.severity> patterns (FreeBSD's syslogd -v -v)
    # these <facility.severity> patterns need to be removed *before* all other tests!
    if ($ThisLine =~ m/^... .. ..:..:..[ ]* \<[a-z0-9]*\.[a-z]*\> /io) {
       $ThisLine =~ s/(\<[a-z0-9]*\.[a-z]*\>){1} //;
    }
    # remove standard syslog-style header or configurable pattern
    $ThisLine =~ s/$RemovePattern//;
    #First line is Solaris ID tag style -mgt
    $ThisLine =~ s/^\[ID \d+( \w+\.\w+)?] //;
    # the following is for those logs that use the service name, but do not
    # append the ':' right after (for example, syslogd restart).  Presumably
    # OnlyService is called before RemoveHeaders, so this should only be done
    # on the required services.
    $ThisLine =~ s/^... .. ..:..:.. [^ ]* //;
    # remove date-prefix, eg Tue Dec 27 21:36:48 2011 : <message>, from each line
    $ThisLine =~ s/^\w{3} \w{3} .. \d{2}:\d{2}:\d{2} \d{4}\s?:\s?//;
    print $ThisLine;
}

# vi: shiftwidth=3 syntax=perl tabstop=3 et
# Local Variables:
# mode: perl
# perl-indent-level: 3
# indent-tabs-mode: nil
# End: