* Rami Sik <[EMAIL PROTECTED]> [2008-02-20 17:47]: > I would like to see what you'd suggest as a log analyzer tool(s) on a > centralized log server
there's a very nice way to do that with the trustworthy syslogd (yeah, the one without that -ng suffix) we ship. just put the following line in your syslog.conf: *.* |/usr/local/sbin/logsurfer -d /picksomething -s the very nice part of the story is that syslogd will take care of forking logsurfer, and start a new one if it should die for whatever reason. it'll take you a while to write sensible logsurfer rules, but after a while of spamming you it'll nicely report anomalies. -- Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED] BS Web Services, http://bsws.de Full-Service ISP - Secure Hosting, Mail and DNS Services Dedicated Servers, Rootservers, Application Hosting - Hamburg & Amsterdam
