similar to: resource efficient log scanning tools

I am trying to install swatch via yum but it doesn't recognize swatch as being available. I have tried various naming conventions such as swatch-3 etc but still no go. I have Dags repo in yum.conf and I see it listed there on his webpage. In addition, I did a yum search swatch and still nada. Anyone have an idea as to why it will not install? I'm running CentOS 3.5 Thanks, Ed

I'm running CentOS 4.4. I'm trying to install swatch (a log watcher) using CPAN. It's getting hung up on trying to install a dependency, Pod::Simple So before I get too wrapped up in this, I have the following questions: 1. Is there an alternative way to install swatch? I didn't get a hit when I tried yum. 2. I'm not wedded to swatch. Is there another log checker

I would like to use swatch to tail a log file for "PageTurnEvent", and if this is not seen in the past 15 minutes then a restart script should be run. Does anyone know if this is possible with the swatch program?

Hi I am using rsyslog to get logs to a central box and they are stored in the format of /<hostname>/<year>/<month>/<day>/<logfilename> I need a solution that can trawl through these directories and pick up exceptions like failed logons and sudo usage that sort of thing. Has anyone got any clues as to what might help to achieve this, i am looking into logsurfer but

Hi folks, My stack of trusty FreeBSD servers always seems to be growing, and it's getting to the point where the daily and security output mail is too much to make good use of. I'm looking for suggestions for log monitoring and aggregation tools, especially from a monitoring-for-security perspective. If I had to imagine an ideal system, it would be a central server that securely

Marek Michalkiewicz <marekm@I17LINUXB.ISTS.PWR.WROC.PL> wrote: : It seems that most of the RedHat 5.3.12 security patches are in the : standard 5.4.17, except for the patch below. Also, there are more : (different) fixes in 5.4.18 (check h_length against sizeof(sin_addr) : in inet/rcmd.c and inet/rexec.c). : + { : +

I'm trying to install swatch using rpmbuild. I'm getting dependency errors saying that I need perl(Date::Calc), perl(Date::Format), and perl(File::Tail). I've been beaten over the head in this group for using CPAN. So methodology do I use to I install those modules? === Al

Hi, I was going to file a bug report for this, but I thought I'd check here first, because I'm not sure if this is a wine bug, or something to do with Photoshop or Compiz. Most times when I close Photoshop CS2, I'm getting the one or more of the tool pallets left behind on my desktop. I have found no way to get rid of them - apart from restarting the X server. I tried xkill but it

I have an init script that after running, causes my terminal not to log out cleanly. Here's what i mean: # /etc/init.d/script restart << this runs fine, returns my shell prompt # exit << When I enter this command, my shell window just stays "stuck" and actually won't close down. Anyone know why this happens?

Hi, I am trying to capture from the logs the moment that samba locks an account. (because of too many failed logon attempts) This is samba 4.7.2, with: > log level = 1 auth_audit:3 What we see in the logs is like this: > Auth: [LDAP,simple bind/TLS] user [(null)]\[cn=username,cn=users,dc=samba,dc=company,dc=com] at [Sat, 02 Dec 2017 15:13:45.102695 CET] with [Plaintext] status

I have need of the functionality of the "swatch" utility. Prior to the actual installation of swatch I used perl2rpm to create RPMs for the PERL modules not provided in CentOS. I got a clean 'make test' from the package so I know that everything is configured properly. The bottom line is that the utility appears to be broken. I can downgrade to version 3.0.8, which

Hi all, I am searching some lightweight tool to control when rsyslog didn't receive events from a specific host or group of hosts for x minutes/seconds. Only a simple tool to send an email when an alert is triggered, I don't need flat tools like zabbix or similars. Does anyone know any?

Hello, I am searching an alternative to logwatch. After too much time spent trying to configure it. I have apache log's in different files and directories, for some reason I can not put logwatch to work. Anyone know and alternative? -- -- -- Publicidad y Servicios http://www.pas-world.com Directorio http://www.precioventa.com Tienda http://informatica.precioventa.com/es/

Today we have been having some problems with the dchannel of out T1's. I was wondering if there is a way for asterisk to send out an email or page whenan error occurs. Not I know errors happen quite offen for many reasons, but I would like an email sent when there is a TI problem, or specefic other problems. I am using the safe_asterisk to run asterisk and it sends an email when asterisk

Full_Name: Sean Laverty Version: R version 2.8.1 (2008-12-22) OS: os x 10.5.6 Submission from: (NULL) (155.101.41.13) In the console colors window, colors do not stick when palettes are closed. All custom colors are replaced by blue. I've tried all palettes - crayons, sliders, wheel, spectrum. "R.bug.report" 30L, 582C[2;1H<<insert bug report here>>[6;1H--please do

Hello, I know centos does not use syslog-ng, but I have installed it at my university. My intention is if a particular string appears in my /var/log/messages I would like to get an email alert. For example, if i see a message "foo" in /var/log/kern I would like to email myself. Any idea how to do this? Has anyone done this before? TIA

We have been noticing flurries of sshd reject messages in which some system out there in the hinterlands hits us with a flood of ssh login attempts. An example: Apr 6 05:41:51 dc sshd[88763]: Did not receive identification string from 67.19.58.170 Apr 6 05:49:42 dc sshd[12389]: input_userauth_request: illegal user anonymous Apr 6 05:49:42 dc sshd[12389]: Failed password for illegal user

If it''s any help, here''s a sed script that is reasonably good at pulling out suspicious-looking items generated by various daemons. Fix appropriately... _H* ========== # this should match a buncha different stuff / [Pp]ermi/b ff / PERMI/b ff / [Rr]efuse/b ff / REFUSE/b ff / [Dd]en[yi]/b ff / DEN[YI]/b ff /[Rr]eject/b ff /REJECT/b ff /[Bb]ogus/b ff /[Pp]assw/b ff /PASSW/b ff

Hey all, Seeing the success of the OT: OS X MySQL tool thread, I thought I''d ask about the tools you guys use for your graphics editing/creating. Like many others, I too made the switch to Apple, and its been an absolute joy so far. I''m an independent contractor/consultant who''s comfort zone is in making admin websites to manage data. With this role comes making little

On Thu, 2007-04-05 at 14:07 -0700, Chris Lattner wrote: > On Thu, 5 Apr 2007, Reid Spencer wrote: > > This is a reminder that the script will change so that tonight's nightly > > test will use the hybrid svn/cvs version. This requires the Date::Parse > > perl module. If you haven't installed it yet, please do so before the > > next run of your nightly test. >