10 Apr
2003
10 Apr
'03
20:40
I have come to rely on LogCheck an awful lot over the past few years, but alas, Cisco has purchased LogCheck and PortSentry (I believe they bought Psionic, who wrote and owned it) and took it closed-source. What are others using to parse log files and ignore normal messages, categorize abnormal messages in terms of Fear-factor, and email the results? Thanks! Matt