Re: Log analyzerFrom: Hugo van der Kooij (email@example.com)
- Previous message: Stilgherrian: "Re: Log analyzer"
- In reply to: Jerome Tytgat: "Log analyzer"
- Next in thread: Derek D. Martin: "Re: Locking Down a Linux Box"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 9 Jan 2002 23:06:21 +0100 (CET) From: Hugo van der Kooij <firstname.lastname@example.org> To: Focus on Linux Mailing List <email@example.com>
On Wed, 9 Jan 2002, Jerome Tytgat wrote:
> I need help in using or finding a good log analyzer.
> Logwatch is shipped with redhat 7.2 but I want to use it
> to analyze /var/log/kernel, /var/log/snort/*,
> /var/log/message[snort:]. But I can't find any scripts for
> snort for logwatch.
You need snortsnarf!
-- All email send to me is bound to the rules described on my homepage. firstname.lastname@example.org http://hvdkooij.xs4all.nl/ Don't meddle in the affairs of sysadmins, for they are subtle and quick to anger.