Hi, Before I try to reinvent the wheel, I'd like to hear are there commonly used utilities that process syslog logs (e.g. /var/log/messages), grep them for some regex and notify configured e-mail addresses, in real time (as messages arrive)? I imagine something like that would either do a "tail -f" on log files or listen as a syslog filter. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 194 bytes Desc: OpenPGP digital signature Url : http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20080121/bc3a6a63/signature.pgp
On 1/21/08, Ivan Voras <ivoras@freebsd.org> wrote:> Hi, > > Before I try to reinvent the wheel, I'd like to hear are there commonly > used utilities that process syslog logs (e.g. /var/log/messages), grep > them for some regex and notify configured e-mail addresses, in real time > (as messages arrive)? I imagine something like that would either do a > "tail -f" on log files or listen as a syslog filter. > > >http://www.vanheusden.com/multitail/examples.html -- Mahnahmahnah!
On Mon, Jan 21, 2008 at 01:33:07PM +0100, Ivan Voras wrote:> Hi, > > Before I try to reinvent the wheel, I'd like to hear are there commonly > used utilities that process syslog logs (e.g. /var/log/messages), grep > them for some regex and notify configured e-mail addresses, in real time > (as messages arrive)? I imagine something like that would either do a > "tail -f" on log files or listen as a syslog filter.This appears to resemble something of interest: freebeast(6.3-S)[18] cat /usr/ports/security//swatch/pkg-descr SWATCH - The Simple WATCHer and filter Swatch is designed to monitor system activity. Swatch requires a configuration file which contains pattern(s) to look for and action(s) to do when each pattern is found. WWW: http://swatch.sourceforge.net/ freebeast(6.3-S)[19] Caveat: I've not used it, though I've seen references to it. Peace, david -- David H. Wolfskill david@catwhisker.org I submit that "conspiracy" would be an appropriate collective noun for cats. See http://www.catwhisker.org/~david/publickey.gpg for my public key. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 195 bytes Desc: not available Url : http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20080121/3c6a7f50/attachment.pgp
On Mon, Jan 21, 2008 at 01:33:07PM +0100, Ivan Voras wrote:> Before I try to reinvent the wheel, I'd like to hear are there commonly > used utilities that process syslog logs (e.g. /var/log/messages), grep > them for some regex and notify configured e-mail addresses, in real time > (as messages arrive)? I imagine something like that would either do a > "tail -f" on log files or listen as a syslog filter.Swatch, logwatch, probably numerous others. -- Clifton -- Clifton Royston -- cliftonr@iandicomputing.com / cliftonr@lava.net President - I and I Computing * http://www.iandicomputing.com/ Custom programming, network design, systems and network consulting services
On Mon, 2008-01-21 at 13:33 +0100, Ivan Voras wrote:> Hi, > > Before I try to reinvent the wheel, I'd like to hear are there commonly > used utilities that process syslog logs (e.g. /var/log/messages), grep > them for some regex and notify configured e-mail addresses, in real time > (as messages arrive)? I imagine something like that would either do a > "tail -f" on log files or listen as a syslog filter. >man: - syslog.conf ( log to file,mail,remote host, | proces) - syslogd - logger - newsyslog These are all in base, kind regards, -- Marten Vijn http://martenvijn.nl http://wifisoft.org http://opencommunitycamp.org