Better Syslog server
From: Matt Harris (mdh@unix.si.edu)
Date: 03/17/03
- Previous message: Filip Maertens: "RE: Solaris disk wipe utilitiy?"
- Next in thread: William Yodlowsky: "Re: Better Syslog server"
- Reply: William Yodlowsky: "Re: Better Syslog server"
- Reply: Nate Campi: "Re: Better Syslog server"
- Reply: Bennett Todd: "Re: Better Syslog server"
- Reply: Jameel Akari: "Re: Better Syslog server"
- Reply: Michael Katz: "Re: Better Syslog server"
- Reply: dreamwvr@dreamwvr.com: "Re: Better Syslog server"
- Reply: Oddbjorn Steffensen: "Re: Better Syslog server"
- Maybe reply: Patrik Sternudd: "RE: Better Syslog server"
- Maybe reply: Rex Monty di Bona: "RE: Better Syslog server"
- Maybe reply: Ivanov, Vladimir: "RE: Better Syslog server"
- Reply: Ian G Batten: "Re: Better Syslog server"
- Maybe reply: Ivanov, Vladimir: "RE: Better Syslog server"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 17 Mar 2003 09:18:38 -0500 From: Matt Harris <mdh@unix.si.edu> To: focus-sun@securityfocus.com
I've been looking a bit on google/sourceforge/etc to try and find a more
configurable and extensible syslog server, to no avail. Does anyone
know of such a thing? If nothing is out there already, I'll probably
embark on a project to do it myself. I'm thinking of a config format
somewhat like this:
# commands for syslog facility "XXX"
Facility XXX {
# Send message to stdin of a script which can send alerts, etc
Severity emerg ACTION /usr/local/libexec/parse-emerg.sh
# 192.168.47.9 - sample dhcp server
Host "192.168.47.9" {
# log stuff from the dhcp server to a seperate file
Severity warn FILE /var/adm/dhcp.log
}
# send other stuff to a default file
Severity DEFAULT FILE /var/adm/xxx.log
}
Of course, this is just an example off the top of my head of some of the
functionality I'd like - for example, piping out to a smart script,
sending to different files based on host that sent the message, etc
etc. I look forward to your input. Thanks, Matt.
-- /* * Matt Harris - Senior UNIX Systems Engineer * Smithsonian Institution, OCIO */
- Previous message: Filip Maertens: "RE: Solaris disk wipe utilitiy?"
- Next in thread: William Yodlowsky: "Re: Better Syslog server"
- Reply: William Yodlowsky: "Re: Better Syslog server"
- Reply: Nate Campi: "Re: Better Syslog server"
- Reply: Bennett Todd: "Re: Better Syslog server"
- Reply: Jameel Akari: "Re: Better Syslog server"
- Reply: Michael Katz: "Re: Better Syslog server"
- Reply: dreamwvr@dreamwvr.com: "Re: Better Syslog server"
- Reply: Oddbjorn Steffensen: "Re: Better Syslog server"
- Maybe reply: Patrik Sternudd: "RE: Better Syslog server"
- Maybe reply: Rex Monty di Bona: "RE: Better Syslog server"
- Maybe reply: Ivanov, Vladimir: "RE: Better Syslog server"
- Reply: Ian G Batten: "Re: Better Syslog server"
- Maybe reply: Ivanov, Vladimir: "RE: Better Syslog server"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
