Not logging - sorry first issue closed about maltrail HOT 9 CLOSED

What do you get for:

1. ps aux | grep python
2. ifconfig -a

from maltrail.

Results of:

1. ip route get 8.8.8.8

8.8.8.8 via 172.31.0.1 dev eth0 src 172.31.5.161

2. ifconfig -a

eth0 - my local ip address

lo - 127.0.0.1

3. ps aux | grep python

username - /usr/bin/python /usr/share/system-config-printer/applet.py
username - python server.py
root - sudo python sensor.py
root - python sensor.py
username - grep --color=auto python

Thank you for fast answer 👍

from maltrail.

ifconfig -a should tell you if eth0 is in PROMISC mode. Is it?

from maltrail.

When type sudo ifconfig eth0 -promisc and then sudo tail -f /var/log/syslog there is msg device eth0 entered promiscuous mode

from maltrail.

So, now its in promiscuous mode. Can you please retry that "ping test"?

E.g.:

ping -c 1 136.161.101.53
cat /var/log/maltrail/$(date +"%Y-%m-%d").log

from maltrail.

Also, just in case, please write if you see anything with:

cat ~/.maltrail/trails.csv | grep 136.161.101.53

from maltrail.

when ping 8.8.8.8 (I see on screenshot this IP)

for cat /var/log/maltrail/$(date +"%Y-%m-%d").log

get this error cat: /var/log/maltrail/2015-12-17.log: No such file or directory

for this IP address

but now when I ping 136.161.101.53 ip address there is log. It's works!

Thank you again and sorry for new issue

from maltrail.

8.8.8.8 is not malicious :)

on which screenshot did you see this?

from maltrail.

I know Google IP it is 🎯 ... nevermind haha 🍨 📦
Thank you again 👍

from maltrail.