From 2bdfa1b59232e5666660624ced00cccc5d4a38f4 Mon Sep 17 00:00:00 2001
From: AJ Jordan <alex@strugee.net>
Date: Thu, 30 Nov 2017 18:43:56 +0000
Subject: [PATCH] Add VERY basic find-interesting-logs

---
 set-perms.sh                        |  2 ++
 usr/local/bin/find-interesting-logs | 13 +++++++++++++
 2 files changed, 15 insertions(+)
 create mode 100755 usr/local/bin/find-interesting-logs

diff --git a/set-perms.sh b/set-perms.sh
index fa0cd3a..7fa6de8 100755
--- a/set-perms.sh
+++ b/set-perms.sh
@@ -1,5 +1,7 @@
 #!/bin/sh
 
+chmod 755 usr/local/bin/find-interesting-logs
+chown root:wheel usr/local/bin/find-interesting-logs
 chmod 644 usr/local/etc/torrc
 chown root:wheel usr/local/etc/torrc
 chmod 555 usr/local/etc/rc.d/tor
diff --git a/usr/local/bin/find-interesting-logs b/usr/local/bin/find-interesting-logs
new file mode 100755
index 0000000..504ef81
--- /dev/null
+++ b/usr/local/bin/find-interesting-logs
@@ -0,0 +1,13 @@
+#!/bin/sh -
+
+cd /var/log
+
+# TODO add dmesg logs?
+# TODO sendmail.st and utx.* are apparently garbage?
+# TODO investigate setuid.today
+# TODO normalize Tor log dates
+
+# sed '' tor/notices.log
+cat auth.log cron debug.log devd.log lpd-errs maillog messages mount.today ppp.log security userlog xferlog \
+| filter-other-days \
+| grep -v 'logfile first created' \