Script to view active user in Debian & Ubuntu

SUBMITTED BY: Guest

DATE: May 6, 2014, 11 a.m.

FORMAT: Text only

SIZE: 1.6 kB

Raw Download

HITS: 40411

Report
  1. #!/bin/bash
  2. # script ini bukan buatan saya
  3. # saya hanya mengedit & menambahkan sedikit comand saja
  6. data=( `ps aux | grep -i dropbear | awk '{print $2}'`);
  8. echo "Dropbear Login";
  9. echo "---";
  11. for PID in "${data[@]}"
  12. do
  13. #echo "check $PID";
  14. NUM=`cat /var/log/auth.log | grep -i dropbear | grep -i "Password auth succeeded" | grep "dropbear\[$PID\]" | wc -l`;
  15. USER=`cat /var/log/auth.log | grep -i dropbear | grep -i "Password auth succeeded" | grep "dropbear\[$PID\]" | awk '{print $10}'`;
  16. IP=`cat /var/log/auth.log | grep -i dropbear | grep -i "Password auth succeeded" | grep "dropbear\[$PID\]" | awk '{print $12}'`;
  17. if [ $NUM -eq 1 ]; then
  18. echo "$PID - $USER - $IP";
  19. fi
  20. done
  21. echo "---";
  23. data=( `ps aux | grep "\[priv\]" | sort -k 72 | awk '{print $2}'`);
  25. echo "OpenSSH Login";
  26. echo "---";
  27. for PID in "${data[@]}"
  28. do
  29. #echo "check $PID";
  30. NUM=`cat /var/log/auth.log | grep -i sshd | grep -i "Accepted password for" | grep "sshd\[$PID\]" | wc -l`;
  31. USER=`cat /var/log/auth.log | grep -i sshd | grep -i "Accepted password for" | grep "sshd\[$PID\]" | awk '{print $9}'`;
  32. IP=`cat /var/log/auth.log | grep -i sshd | grep -i "Accepted password for" | grep "sshd\[$PID\]" | awk '{print $11}'`;
  33. if [ $NUM -eq 1 ]; then
  34. echo "$PID - $USER - $IP";
  35. fi
  36. done
  41. echo "[ kang.pandie ]"
comments powered by Disqus