10 Apr
2003
10 Apr
'03
23:17
On Thursday 10 April 2003 16:40, Matthew Carpenter wrote:
I have come to rely on LogCheck an awful lot over the past few years, but alas, Cisco has purchased LogCheck and PortSentry (I believe they bought Psionic, who wrote and owned it) and took it closed-source.
What are others using to parse log files and ignore normal messages, categorize abnormal messages in terms of Fear-factor, and email the results?
I too, used to use LogCheck, and still do on a couple of 7.2 servers I have in production. On a new machine I just deployed, I went to logdigest as a replacement. So far, seems good. -- ... I'm IMAGINING a sensuous GIRAFFE, CAVORTING in the BACK ROOM of a KOSHER DELI!!