Linux SFTP日志如何查看和分析

import os
import datetime
import smtplib
from email.mime.text import MIMEText
from email.header import Header
from datetime import timedelta

def sftp_check():
    user_name = 'zhpro'
    now = datetime.datetime.now()
    yesterday = (now - timedelta(days=1)).strftime('%Y-%m-%d')
    file_name = f"/var/log/auth.log_{yesterday}"
    
    ssh_id_list = []
    time_action_dict = {}
    
    with open(file_name, "r", encoding='utf-8') as fd:
        for line in fd:
            if user_name in line:
                ssh_id = line.split()[4]
                ssh_id_list.append(ssh_id)
    
    with open(file_name, "r", encoding='utf-8') as fd:
        for line in fd:
            if line.split()[4] in ssh_id_list:
                read_key = "flags READ mode 0666"
                if read_key in line:
                    action_time = " ".join(line.split()[0:3])
                    action_file = line.split()[6]
                    time_action_dict[action_file] = action_time
    
    return time_action_dict

def smtp_send(file):
    mail_host = "smtp.exmail.qq.com"
    mail_user = "your_email@example.com"
    mail_pass = "your_password"
    sender = "your_email@example.com"
    receivers = ["receiver1@example.com", "receiver2@example.com"]
    
    with open(file, 'r', encoding='utf-8') as f:
        message = MIMEText(f.read(), 'plain', 'utf-8')
        message['From'] = Header(sender, 'utf-8')
        message['To'] = Header(" ".join(receivers), 'utf-8')
        subject = "SFTP Download Activity"
    
    with smtplib.SMTP(mail_host, 25) as server:
        server.starttls()
        server.login(mail_user, mail_pass)
        server.sendmail(sender, receivers, message.as_string())

# 调用函数进行分析并发送邮件
sftp_activity = sftp_check()
smtp_send(str(sftp_activity))