[logs] Alerts for postfix logs

• Previous message: Gonzalo Garcia: "RE: [logs] Statistical or probabilistic log mining"
• Next in thread: Paul Robertson: "Re: [logs] Alerts for postfix logs"
• Reply: Paul Robertson: "Re: [logs] Alerts for postfix logs"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi All,
	We have recently moved from sendmail to postfix on our main MTAs and I
am doing some belated tweaking of our log processing scripts.  For
sendmail we had a whole bunch of patterns that spotted BadThings (tm), I
don't remember where we cribbed it from. 

Does anyone have something equivalent for Postfix?  

We do the usual trick of chucking the mundane stuff so we can see any
unusual record but we also have real time watch for stuff that generates
'Alerts' that we don't want to wait for the hourly report to find out
about.

-- 
Russell Fulton, Network Security Officer, The University of Auckland,
New Zealand.

_______________________________________________
LogAnalysis mailing list
LogAnalysis@private
http://lists.shmoo.com/mailman/listinfo/loganalysis

• Next message: Paul Robertson: "Re: [logs] Alerts for postfix logs"
• Previous message: Gonzalo Garcia: "RE: [logs] Statistical or probabilistic log mining"
• Next in thread: Paul Robertson: "Re: [logs] Alerts for postfix logs"
• Reply: Paul Robertson: "Re: [logs] Alerts for postfix logs"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Nov 20 2003 - 14:13:56 PST