python3如何搜索日志文件
因此,对于作业,我必须读取一个日志文件,其中的条目与下面列出的条目相似python3如何搜索日志文件,python,python-3.x,Python,Python 3.x,因此,对于作业,我必须读取一个日志文件,其中的条目与下面列出的条目相似 s12773390 dtremote ::1::1:6 Sat Mar 26 14:03 - 15:08 (01:04) kthao2 dtremote ::1::1:6 Sat Mar 26 11:25 - 11:32 (00:06) jwoodcock dtremote ::1::1:3 Fri Mar 25 23:23 - 23:29
s12773390 dtremote ::1::1:6 Sat Mar 26 14:03 - 15:08 (01:04)
kthao2 dtremote ::1::1:6 Sat Mar 26 11:25 - 11:32 (00:06)
jwoodcock dtremote ::1::1:3 Fri Mar 25 23:23 - 23:29 (00:06)
loginDataFile = open('logindata.dat', 'r')
loginDataList = loginDataFile.readlines()
jwoodcockLogin = [x for x in loginDataList if 'jwoodcock' in x]
print(jwoodcockLogin[len(jwoodcockLogin - 1)])
到目前为止,这让我得到了他们第一次登录的列表元素,但是,我只需要日志条目中的日期,而不是全部内容 如果保证前三个字段没有空格,则可以执行以下操作:
username, type, address, timestamp = jwoodcockLogin[-1].split(None, 3)
print(timestamp)
lasttimestamp = None
# Use with statement to guarantee the file is closed promptly (on block exit)
with open('logindata.dat') as loginDataFile:
# file objects are lazy iterators of their lines, no need to call
# .readlines() and eagerly slurp the whole thing into (limited) memory
for line in loginDataFile:
# Extract username and timestamp, with _ indicating fields that must
# exist, but we don't care about otherwise
username, _, _, timestamp = line.split(None, 3)
if username == 'jwoodcock':
lasttimestamp = timestamp
if lasttimestamp is not None:
print(lasttimestamp)
else:
print("User not found in log")
它只存储当前正在处理的行和用户看到的最后一个时间戳,因此1 MB日志文件和10 GB日志文件的扫描时间不同,您不会有内存不足的风险。我很想用
greptail