Darren, > You're mixing two different mechanisms here. The "event > manager" logs are used in a different way than is syslog Not really, under *nix the well-behaved guys will use syslog(). On Windows, they write to the system event log. Same story, same idea (well, except that Microsoft obviously never thought that those machines were on a network and so everthing is stored locally, only ;)). The fact that there are different interfaces and methodologies used does not imply that the desired result is different... > but > I suppose the question is, should syslog support that type of > use anyway? And if so, how? The mechanism currently used is > not sufficient, I think. I strongly think that syslog should be generic enough (and it currently is) to support events from all sources. After all, isn't one of the basic ideas behind syslog to consolidate events from various sources onto a single (set) of machines. And yes, the current protocol supports this (more or less) as can be seen in our forwarder implementation as well as others... Rainer _______________________________________________ LogAnalysis mailing list LogAnalysisat_private http://lists.shmoo.com/mailman/listinfo/loganalysis
This archive was generated by hypermail 2b30 : Fri Dec 13 2002 - 10:39:12 PST