Note that these statistics are public unless you secure them.Īdd the following code to /etc/crontab for each domain:Ġ */3 * * * /usr/lib/cgi-bin/ -config=yourdomain. Statistics for yourdomain.ext should now be available at:įor if you have multiple config files.
Install AWStats with Synaptic or sudo apt-get install awstatsĪwstats configuration files in Ubuntu are located in /etc/awstats. CVE-2005-0435: in AWStats 6.3 and 6.4 allows remote attackers to read server web logs by setting the loadplugin and pluginmode parameters to rawlog. For more help, get XChat and subscribe to channel "#awstats" on the Ubuntu Server. Direct code injection vulnerability in in AWStats 6.3 and 6.4 allows remote attackers to execute portions of Perl code via the PluginMode parameter. It assumes you already have an Apache2 web server up and running. The following documentation contains specific information on installing and configuring Awstats with Ubuntu and Apache2. It can analyze log files from all major server tools like Apache log files (NCSA combined/XLF/ELF log format or common/CLF log format), WebStar, IIS (W3C log format) and a lot of other web, proxy, wap, streaming servers, mail servers and some ftp servers.
It uses a partial information file to be able to process large log files, often and quickly. This log analyzer works as a CGI or from command line and shows you all possible information your log contains, in few graphical web pages. AWStats is a free powerful and featureful tool that generates advanced web, streaming, ftp or mail server statistics, graphically.