Grep syslog today last hour

grep -i "$(date +%b\ %d\ %H)" syslog
Uses date to grep de logfile for today and uses it to get the last hour logs. Can be used to get last minute logs or today's logs.
Sample Output
May 23 18:10:01 tortatil /USR/SBIN/CRON[7620]: (root) CMD (if [ -x /usr/bin/mrtg ] 
May 23 18:10:02 laptop sSMTP[7624]: Unable to locate mail
May 23 18:10:02 laptop sSMTP[7624]: Cannot open mail:25
May 23 18:10:02 laptop /USR/SBIN/CRON[7616]: (root) MAIL (mailed 1 byte of output; but got status 0x000

6
2010-05-23 16:18:15

What Others Think

More backtick evil. $() is the path to true enlightenment: grep -i "$(date +%b" "%d" "%H)" syslog
atoponce · 446 weeks and 5 days ago
I don't like that weird use of quotes. But: grep -i "`date '+%b %d %H'`" syslog Works fine
matthewbauer · 446 weeks and 4 days ago
Corrected.
rubenmoran · 446 weeks and 4 days ago
Uh, this doesn't work of course. Consider the case where it's just hit 11:00:01. This will only grep the last second worth of logs.
skrewler · 392 weeks and 4 days ago

What do you think?

Any thoughts on this command? Does it work on your machine? Can you do the same thing with only 14 characters?

You must be signed in to comment.

Considering A New Car?

You should consider a Tesla. Get 6 Months Free Supercharging.

Free Supercharging

What's this?

commandlinefu.com is the place to record those command-line gems that you return to again and again. That way others can gain from your CLI wisdom and you from theirs too. All commands can be commented on, discussed and voted up or down.

Share Your Commands



Stay in the loop…

Follow the Tweets.

Every new command is wrapped in a tweet and posted to Twitter. Following the stream is a great way of staying abreast of the latest commands. For the more discerning, there are Twitter accounts for commands that get a minimum of 3 and 10 votes - that way only the great commands get tweeted.

» http://twitter.com/commandlinefu
» http://twitter.com/commandlinefu3
» http://twitter.com/commandlinefu10

Subscribe to the feeds.

Use your favourite RSS aggregator to stay in touch with the latest commands. There are feeds mirroring the 3 Twitter streams as well as for virtually every other subset (users, tags, functions,…):

Subscribe to the feed for: