llshred Command

To comply with the GDPR regulations, LogLogic LMI provides a CLI utility - the llshred command - to shred selected data.

Log in as toor user and type the following command from the command line: 

$ llshred [ -dryRun | -f | -v | -vv ]
llshred Syntax Parameters
Parameter Description Default
-dryRun If set to false, log data is prefixed with the string LLSHREDDER and each character is replaced with an X.

If set to true, processes the input file but does not alter events.

It is highly recommended to run with dryRun=true before running the command with dryRun = false.

true
-f Specifies the path to the file containing the log events to be erased. n/a
-v Reports verbose console messages.

Provides detailed information about the files that include shredded events.

false
-vv Reports more verbose console messages.

Provides more information about events that are shredded.

false

Command examples

An example with dryRun as false 

$ llshred -f llshred_key.csv -dryRun false
 
----- Shred Report -----
Command Line        :llshred -f llshred_key.csv -dryRun false
Status              :Success Shredded Events saved.
Version             :version=1.0.1-SNAPSHOT,timestamp=20180516092641,revision=132636
Appliance IP        :10.114.76.60
Start               :Thursday, June 28, 2018 10:31:48 AM PDT
End                 :Thursday, June 28, 2018 10:31:49 AM PDT
Duration            :0:00:00.015
Events Shredded     :38
Files Modified      :5
/loglogic/data/vol1/2018/06/28/1700/rawdata_10013_1530205920_60-3650.txt.gz,25
/loglogic/data/vol1/2018/06/28/1600/rawdata_10030_1530203340_60-3650.txt.gz,1
/loglogic/data/vol1/2018/06/28/1600/rawdata_10048_1530204420_60-3650.txt.gz,1
/loglogic/data/vol1/2018/06/28/1600/rawdata_10054_1530204780_60-3650.txt.gz,10
/loglogic/data/vol1/2018/06/28/1700/rawdata_10002_1530205260_60-3650.txt.gz,1

An example with dryRun as true 

$ llshred -f llshred_key.csv -dryRun true
 
----- Shred Report -----
Command Line        :llshred -f llshred_key.csv -dryRun true
Status              :Success Dry Run - Shredded Events not saved.
Version             :version=1.0.1-SNAPSHOT,timestamp=20180516092641,revision=132636
Appliance IP        :10.114.76.60
Start               :Thursday, June 28, 2018 10:29:27 AM PDT
End                 :Thursday, June 28, 2018 10:29:28 AM PDT
Duration            :0:00:00.963
Events Shredded     :38
Files to be Modified:5
/loglogic/data/vol1/2018/06/28/1700/rawdata_10013_1530205920_60-3650.txt.gz,25
/loglogic/data/vol1/2018/06/28/1600/rawdata_10030_1530203340_60-3650.txt.gz,1
/loglogic/data/vol1/2018/06/28/1600/rawdata_10048_1530204420_60-3650.txt.gz,1
/loglogic/data/vol1/2018/06/28/1600/rawdata_10054_1530204780_60-3650.txt.gz,10
/loglogic/data/vol1/2018/06/28/1700/rawdata_10002_1530205260_60-3650.txt.gz,1

An example with error in the .csv file 

$ llshred -f llshred_key.csv
 
----- Shred Report -----
Command Line        :llshred -f llshred_key.csv
Status              :Invalid EventKey:8Dda28272E0, No stdf record with gmtHourPath,seqno = /2018/07/28/0800/,10279 found.
Version             :version=1.0.1-SNAPSHOT,timestamp=20180516092641,revision=132636
Appliance IP        :10.114.76.60
Start               :Thursday, June 28, 2018 10:41:25 AM PDT
End                 :Thursday, June 28, 2018 10:41:25 AM PDT
Duration            :0:00:00.360
Events Shredded     :0
Files to be Modified:0
------------------------
Related tasks