IS there any way to view a site's access long via ssh? For some reason, my computer cannot handle the raw access logs (set for clearing every 1.5 days), I run out of memory.
But I can view files b igger than this on SSH without any performance downfall whatsoever.
I'm getting hammered by somebody probing the "/w00tw00t.at.ISC.SANS.DFind" exploit and I'd like to filter their IP(s) through my firewall.
(It's showing up in logwatch, logwatch doesn't supply the IP data)