On Fri, Aug 10, 2001 at 10:09:50PM +0200, Michael Radziej wrote: > I'm a little bit familiar with swatch and logsurfer, and > found both of them not powerful enough for me. I particularily > missed: > > - smart handling of "message storms" when a message > appears thousands of times > - better reports or some way to extend the reports mechanism log_analysis. See: http://linux.umbc.edu/~mabzug1/log_analysis.html > - a way to use the facility/priority information from syslog > (which could help with unconfigured messages This information is usually discarded by your syslog daemon, unless you are separating things into different files, which is a PITA. One solution is to replace your system syslog daemon with syslog-ng, which lets you modify the log format to include this info. See: http://www.balabit.hu/en/products/syslog-ng/ - Morty --------------------------------------------------------------------- To unsubscribe, e-mail: loganalysis-unsubscribeat_private For additional commands, e-mail: loganalysis-helpat_private
This archive was generated by hypermail 2b30 : Fri Aug 10 2001 - 21:27:47 PDT