> My page at www.campin.net/newlogcheck.html shows how I did all this > stuff, using open source tools. Well, one part I ended up having to > write myself, and haven't released the code. Nobody else should need > that code, though (unless they're running shitty Vignette Storyserver > on Solaris). > I should have mentioned I checked that out. I set things up and had it running. The design works, but I wanted more and things didn't seem to mesh with what I was trying to do. I am attempting to not use programs like swatch or logcheck. The other things that turn me off are patching syslogd and rewriting log files. msyslog will log directly to mysql, so I could eliminate syslog-ng and syslogd. Some of what I want to do starts spreading into event correlation. I do like your reports though. A quick view like that is handy. I may go back to your setup and see if I can modify it to reach my goal. I misspoke when I said I haven't found anything. Your setup is along the same lines. ;) Jason Lewis http://www.packetnexus.com --------------------------------------------------------------------- To unsubscribe, e-mail: loganalysis-unsubscribeat_private For additional commands, e-mail: loganalysis-helpat_private
This archive was generated by hypermail 2b30 : Fri Apr 19 2002 - 21:26:07 PDT