Thu, 31 Mar 2005, by abeath@gmail.com:

Ryan,

Logwatch is pretty good, but I find that I need to have custom scripts to parse the information it generates. Firewall data is especially chatty and 3 quarters of it can be safely ignored. I'm open to hearing about other products too, but at the moment logwatch seems to do a reasonable job. One oddity I've noted is that under SuSE 9.2, when there is a software RAID in place, logwatch fails to correctly show disk usage - it shows the RAID/LVM and that's it..... any clues anyone?

Regards,

Angus

On Wed, 2005-03-30 at 12:23 -0600, Ryan McCain wrote:

...

With all the different log monitoring tools out there (ie: logwatch, swatch, etc.) which do you guys find the most effective and why?

I really like LoFiMo (Log File Watcher). It's a Java app that can monitor several logfiles at the same time, change watch rules, colours and fonts in realtime (no need to fröbel in config files and restart). Theo -- Theo v. Werkhoven Registered Linux user# 99872 http://counter.li.org ICBM 52 13 26N , 4 29 47E. + ICQ: 277217131 SUSE 9.2 + Jabber: muadib@jabber.xs4all.nl Kernel 2.6.8 + See headers for PGP/GPG info.