New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Would GoAccess be capable to analyze a webmail logs generated with RoundCube? #1210
Comments
Question, are you essentially trying to group these actions? You probably need to preprocess the log with tools such as awk, grep, sed, etc and create specific reports from goaccess to display that filtered data. |
For sure, I can preprocess the log with awk, grep, sed, etc. In fact, this is the first thing I've done in order to narrow down the number of columns and isolate just colums that help me to identify "which-IP", "what date/time" and "which-Operative System". But, after analyze that, the goal is sligthly different: I need to determine what actions were performed by a concrete actor (i.e.: a concrete IP). Data of such actions are inside GET requests. And it seems that one standard action for us (humans) like "accessing an email" becomes 4 sub-actions inside the log. So, for me, it would be difficult to identify each standard action if I have to do it by myself with commands and at a naked-eyes. Another thing that complex further the goal is that each GET request is almost unreadable to do it at a naked-eyes. The thing is that I found this tool and thought it would help me out doing the hard work. So, can it help me out somehow? Basically, what I need GoAccess identify for me is something like this:
|
Got it. Unfortunately at the moment is not possible. However, I plan to address this (or something close to it) in #117. Thanks for the explanation though, I'll keep this in mind. |
Yeah, Thank you so much for your time, anyway. Please, keep me posted when you go further developing this issue, and please, don't hesitate in asking me help in order to accomplish this goal. I'll be glad to help you. Just in case you need it, here you have the last command I used filtering the massive roundcube-log data-file (perhaps you already know how to do this, but if not, here you have an example...), below, you'll find what it does (remove "(#)" expressions if you plan to use it):
I strongly believe this issue about roundcube logs is such an interesting thing to accomplish because I think there isn't out there any software performing this. |
Thanks for posting that. Please keep this open so I can take a look at it. |
Hi everyone!
I have a webmail log generated with RoundCube and I have to accomplish the mission to generate an insight of what concrete actions have been made in each session for a determined IP accessing a certain email account.
Would GoAccess be capable to do the job??
Many thanks in advance, and Best Regards,
Alex
PD: By creating a new dump email account "test", for which the log is empty initially, and performing some basic tasks, I've been able to reach these fresh writed lines onto the empty log, for each action. For instance:
Writing a new mail:
Accessing a mail:
Erasing a mail:
The text was updated successfully, but these errors were encountered: