Re: [PLUG] Is there a better name for...

[bergman@merctech.com]

The pithy ruminations from JP Vossen <jp@jpsdomain.org> on "[PLUG] Is there a better name for..." were:

=> ...a "log check"?
=> 
=> I've talked about this before, there is a package in Debian & Ubuntu, 
=> and a project site:
=> * logcheck - mails anomalies in the system logfiles to the administrator
=> * http://logcheck.org/
=> 

Or, similarly named and part of a default RH/CentOS/SL install:

	logwatch (http://www.logwatch.org/)

=> 
=> So you end up with 2 buckets:
=> A) Stuff you know is bad
=> B) Stuff you don't recognize (so either it's bad or you tune it out)

I'm really fond of using "sec" (Simple Event Correlator, http://simple-evcorr.sourceforge.net/) for more sophisticated (and 'real-time') alerts.

Mark

=> 
=> Thanks,
=> JP
=> ____________________
=> Footnote:
=> [1] http://logcheck.org/docs/README-psionic
=> ----------------------------|:::======|-------------------------------
=> JP Vossen, CISSP            |:::======|      http://bashcookbook.com/
=> My Account, My Opinions     |=========|      http://www.jpsdomain.org/
=> ----------------------------|=========|-------------------------------
=> "Microsoft Tax" = the additional hardware & yearly fees for the add-on
=> software required to protect Windows from its own poorly designed and
=> implemented self, while the overhead incidentally flattens Moore's Law.
=> ___________________________________________________________________________
=> Philadelphia Linux Users Group         --        http://www.phillylinux.org
=> Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
=> General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug
=> 

-----
Mark
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug