What is this Log?

We have to be honest, logs are often an after thought to most developers. Many logs are pretty cryptic unless you can look at the code and see what is going on. In this section, we will share what we think of a specific log: - the cryptic ones, the fun ones and some of the ones we see more often.

What this Log Means?

Log: audit-log-cron
type=USER_START msg=audit(1719517182.019:16496658): pid=12425 uid=0 auid=0 ses=2317238 msg='op=PAM:session_open grantors=pam_loginuid,pam_keyinit,pam_limits,pam_systemd acct='root' exe='/usr/sbin/crond' hostname=? addr=? terminal=cron res=s ...
What it means? Click for answer.
Log: tesla-user-agent
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.127 Safari/537.36 Tesla/feature-2022.20.9-31-abc ...
What it means? Click for answer.
Log: iptables-nf-conntrack-table-full
Jul 18 16:05:27 myserver kernel: [736737.006413] nf_conntrack: nf_conntrack: table full, dropping packet<br />Jul 18 16:05:27 myserver kernel: [736737.006413] ip_conntrack: ip_conntrack: table full, dropping packet ...
What it means? Click for answer.
Log: apache-dummy-127
::1 - - [18/Jul/2022:19:23:52 +0000] "OPTIONS * HTTP/1.0" 200 126 "-" "Apache/2.4.52 (Ubuntu) OpenSSL/3.0.2 (internal dummy connection)" ...
What it means? Click for answer.
Log: netflowv5-tcp80
{"port":5601,"format":"netflowv5","header":{"version":5,"count":30,"sys_uptime":1914116404,"unix_secs":1654392803,"unix_nsecs":436470348,"flow_sequence":2577672181,"engine_type":0,"engine_id":0,"sampling_interval":0},"record":{"srcaddr":"19 ...
What it means? Click for answer.
Log: haproxy-handshake-failure
May 21 12:18:26 proxy1 haproxy[2069]: 2.31.1.1:57475 [21/May/2022:12:18:26.382] httpsproxy/1: SSL handshake failure ...
What it means? Click for answer.
Log: charon-vpn-header
Mar 11 16:11:30 vpnproxy charon: 11[ENC] header verification failed ...
What it means? Click for answer.
Log: unifi-ap-wireless-agg-stats
May 18 13:24:18 garage 1281c277a279,UAP-HD-6.0.14+13634: mcad: mcad[19323]: wireless_agg_stats.log_sta_anomalies(): bssid=6b:83:c1:22:f1:21 radio=wifi1 vap=ath3 sta=ac:b1:2c:c3:52:01 satisfaction_now=0 anomalies=dns_timeout ...
What it means? Click for answer.
Log: unifi-ap-wireless-str-assoc-track
May 18 17:17:10 UAP-livingroom 65ff42c112d,UAP-HD-IW-5.60.23+13051: stahtd: stahtd[17220]: [STA-TRACKER].stahtd_dump_event(): {"message_type":"STA_ASSOC_TRACKER","mac":"11:41:17:a4:26:af","vap":"rai0","event_type":"fixup","auth_ts":"0.0","a ...
What it means? Click for answer.
Log: sshd-failed-password-gitlab
May 12 21:28:26 log1 sshd[31245]: Invalid user gitlab from 216.158.228.199 port 59318 ...
What it means? Click for answer.
Log: dovecot-failedlogin-pam
May 20 20:57:09 mx1 auth: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=daemon rhost=122.175.40.117 user=daemon ...
What it means? Click for answer.
Log: postfix-sasl-failedlogin
May 20 23:56:19 mx1 postfix/smtps/smtpd[3425910]: warning: unknown[118.189.183.180]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...
What it means? Click for answer.
Log: macos-display-on
May 21 17:58:38 Dev-Mac-Pro powerd[80]: Display is turned on ...
What it means? Click for answer.
Log: macos-display-off
May 21 17:58:38 Dev-Mac-Pro powerd[80]: Display is turned off ...
What it means? Click for answer.

Simple, Affordable, Log Management and Analysis.

14 days free trial. No credit card required.

Get Started