[logs] forms an formats of syslog??

• Previous message: Jose Nazario: "Re: [logs] ip mapping software"
• Next in thread: Alexandre Dulaunoy: "Re: [logs] forms an formats of syslog??"
• Reply: Alexandre Dulaunoy: "Re: [logs] forms an formats of syslog??"
• Reply: Brian Birkinbine: "Re: [logs] forms an formats of syslog??"
• Reply: Nate Campi: "Re: [logs] forms an formats of syslog??"
• Reply: Chris M. Lonvick: "Re: [logs] forms an formats of syslog??"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I'm working on a sort of syslog parser thingie that will be released in
a couple months. It's rule-driven and can pretty much consume anything
you throw at it (so far, anyhow...)  - and of course I'm bumping up against
the numerous incompatibilities of various syslog message formats.
Does anyone have any notes on the various syslog header layouts
that are out there in the wild? I'm mostly interested in the various

dd/mm/yy host: program[pid]
dd/mm host: program:

type stuff. Less interested in the message contents - that's another
problem for another day. :)

Off-topic: whatEVER were they thinking when they didn't include the
_year_ in syslog messages? Eesh...

mjr.


---------------------------------------------------------------------
To unsubscribe, e-mail: loganalysis-unsubscribeat_private
For additional commands, e-mail: loganalysis-helpat_private

• Next message: Andrew Hilborne: "Re: [logs] ip mapping software"
• Previous message: Jose Nazario: "Re: [logs] ip mapping software"
• Next in thread: Alexandre Dulaunoy: "Re: [logs] forms an formats of syslog??"
• Reply: Alexandre Dulaunoy: "Re: [logs] forms an formats of syslog??"
• Reply: Brian Birkinbine: "Re: [logs] forms an formats of syslog??"
• Reply: Nate Campi: "Re: [logs] forms an formats of syslog??"
• Reply: Chris M. Lonvick: "Re: [logs] forms an formats of syslog??"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Jan 09 2002 - 07:05:41 PST