Troubleshoot - by Hostrare
cPanel log file places and Basic troubleshooting, the most action that happens on a server to log data, so that you can go back and analyze log entries for difficulties, instead of becoming to be on the server at the time of them following.
Path : /var/log/dmesg
Use the command ” dmesg ” in the root shell to perform all the kernel ring buffer (last 64 K) stored in the mind. Just use ” dmesg > boot.messages ” to store the logs in a separate record, and if you need to remove the dmesg just type ” dmesg -c “.
Path : /var/log/messages
Use “ tail -f /var/log/message ” to list what is going on with your policy and with your DNS. This log helps the admin to decide any form of tcp/udp and another form of attack.
Path : /var/log/btmp
Properties all the bad login and logout effort each failure or success. Just use the lastb command to list all the logs in a free format with date/time etc to track and block the attack source. This kind of ssh attack is usually done by applying a script with Brute strength identification crackers.
Path : /var/log/wtmp
Similar to the bad login/logout this log store the good/authorized system login and logout which can be listed using ” last “ command.
Path : /var/log/lastlog
Database terms of past user logins. The lastlog file is a database that includes info on the last login of every user. Use the ” lastlog ” right to retrieve the data from the records.
Path : /var/log/secure
Logs all daemons which requires PAM Authentication.
cPanel/WHM Initial Installation Errors
Path : /var/log/cpanel*install*
Logs use to record the missing dependency or any fault encounter during the cpanel installation method including the tool operator crashes/mismatches.
Path : /usr/local/cpanel/logs/license_log
Permit and its renewed data are collected here, if you are suffering any permission difficulty just complete the company /usr/local/cpanel/cpkeyclt to refresh the support from the Cpanel.
Path : /var/cpanel/accounting.log
Holds a list of accounting duties performed through WHM, including account removal and creation. So the president can perform of these accounts to check who removed the account and from which IP etc.
Path : /var/log/chkservd.log
Separate logs for the cpanel’s chkservd daemon which logs the service failure and notifications.
Path : /usr/local/cpanel/logs/stats_log
The stats daemon (cpanellogd) logs the output from all stats generators (Awstats, Webalizer, Analog) here.
Path : /usr/local/cpanel/logs/access_log
All the login attempts and logins will be logged in these logs which helps the administrator to check who logged in to the panel on which time/IP address etc.
Path : /var/cpanel/bandwidth
Files contain a list of the bandwidth history for each account. Each named after their respective user.
Path : /usr/local/cpanel/logs/tailwatchd_log
Logs for daemon configured under tailwatchd ie. cPBandwd, Eximstats, Antirelayd.
Ftp General login and Failure
Path : /var/log/messages
FTP Data Transactions log
Path : /var/log/xferlog
Is a symbolic link in most cases to /usr/local/apache/domlogs/ftpxferlog, which contains a history of the transactions made by FTP users.
FTP account Raw logs.
Path : /usr/local/apache/domlogs/ftp.domainname-ftp_log
Store all the ftp login/transfers ftp commands, client connection status etc.
Pure-ftp log
Path : /var/log/pureftpd.log
It will be disabled by default and only works if you enable it in the /etc/pure-ftpd.conf .
Pro-ftp log
Path : /var/log/pro-ftpd.log
It will be disabled by default and only works if you enable it in the /etc/pro-ftpd.conf
MySQL General Information and Errors
Path : /var/lib/mysql/$(hostname).err
This path could vary, but is generally located in /var/lib/mysql. Could also be located at /var/log/mysqld.log.
Apache Access Logs:
Path : /usr/local/apache/logs/access_log
Complete web server access log records all requests processed by the server.
General Error and Auditing Logs
Path : /usr/local/apache/logs/error_log
All exceptions caught by httpd along with standard error output from CGI applications are logged here, including apache crash etc.
Apache SuExec Logs
Path : /usr/local/apache/logs/suexec_log
Auditing information reported by suexec each time a CGI application is executed. Useful for debugging internal server errors, with no relevant information being reported to the Apache error_log, check here for potential suexec policy violations.
Domain Access & error logs
Path : /usr/local/apache/domlogs/domain.com
General access and error log file for each domain configured with cPanel.
Mail Receive and Delivery
Path : /var/log/exim_mainlog or /var/log/exim/mainlog(FreeBSD)
Receives an entry every time a message is received or delivered.
ACLs/Policies based RejectLog
Path : /var/log/exim_rejectlog
An entry is written to this log every time a message is rejected based on either ACLs or other policies eg: aliases configured to :fail
Panic/Fatal Errors :
Path : /var/log/exim_paniclog
Logs any records Exim doesn’t know how to manage. It’s usually a really bad situation when log records are being recorded here, and they should be properly investigated
IMAP/POP logs
Path : /var/log/maillog & /var/log/messages
The IMAP, POP, and SpamAssassin services all log here. This involves all usual logging information (login efforts, activities, spam scoring), along with fatal mistakes.
our suuport team here for you 24/7
+8801977507015support@hostrare.comsend a leter Whether you are looking for a personal website hosting plan or a business website hosting plan, We are the perfect solution for you. Our powerful website hosting services will not only help you achieve your overall website goals, but will also provide you with the confidence you need in knowing that you are partnered with a reliable and secure website hosting platform.