Previously I enabled Timestamps in Bash to allow me to know when someone was doing stupid things, such as deleting vixie-cron or truncating databases at midnight, now I have system that backups all of the .bash_history files on my production system and stores them so I can look for stupid behavior, however the logfiles are a little unfriendly to the human eye
example of logfiles go here
This necessitated the creation of a script that would let me view the history file as it was originally viewable with the history command and the timestamps parsed, thus bhistory was created.
#!/usr/bin/python import re import time import sys import os.path try: sys.argv[1] except: sys.exit("nNo file specified!nUsage:nbhistory <filename>n") if os.path.isfile(sys.argv[1]): # file exists! print "" else: sys.exit("nfile doesn't exist, try againn") with open(sys.argv[1]) as input_file: for i, line in enumerate(input_file): #print line, m_obj = re.search("^#",line) if m_obj: new = line.strip('#') print time.strftime("%Y-%m-%d %H:%M:%S", time.localtime(int(new))) else : print line print "{0}line(s) printed".format(i+1)
Simple chmod the file, call it bhistory or whatever else you please and then drop it somewhere that your path statement covers and its time to view that logfile (and hopefully not find stupid things happening)
Usage: # bhistory /home/somebody/.bash_history
Naturally nobody should consider this a script that I support in any way, use this mess of code at your own discretion just make sure you have the timestamps enabled or not much is going to happen when you use it.