0
我想监视我的游戏服务器的日志文件,以防止数据包修改利用连续的某些行,这需要我来检测这样的线如何监控在一个文本文件
[15:02:14] Packet was modified, sent by id: 20, ip: 197.53.29.136:10479
[15:02:14] Packet was modified, sent by id: 20, ip: 197.53.29.136:10479
[15:02:15] Packet was modified, sent by id: 20, ip: 197.53.29.136:10479
[15:02:15] Packet was modified, sent by id: 20, ip: 197.53.29.136:10479
[15:02:15] Packet was modified, sent by id: 20, ip: 197.53.29.136:10479
[15:02:15] Packet was modified, sent by id: 20, ip: 197.53.29.136:10479
一旦5条相同的线(包含'数据包被修改,由id:发送,相同的id和ip - 让我们忽略时间)在一秒内(1000毫秒)内记录,ip应该稍后检索,以便我可以禁止它。 这可能吗?
我怀疑这是否足以解决问题,因为id和ip需要相同。另外我该如何执行该脚本(我对shell没有任何知识)? –
@SeifHassine'uniq -c'会聚集连续的唯一行并添加它们中有多少个。这将考虑整条线路。 'awk'使用这个计数。 – Kusalananda
非常感谢!有效 –