Date: Fri, 17 Feb 2006 09:48:43 +0700 (ICT) From: Olivier Nicole <on@cs.ait.ac.th> To: ashley.moran@codeweavers.net Cc: freebsd-questions@freebsd.org Subject: Re: Log analysis server suggestions? Message-ID: <200602170248.k1H2mhKn041207@banyan.cs.ait.ac.th> In-Reply-To: <200602161418.32982.ashley.moran@codeweavers.net> (message from Ashley Moran on Thu, 16 Feb 2006 14:18:32 %2B0000) References: <200602161418.32982.ashley.moran@codeweavers.net>
next in thread | previous in thread | raw e-mail | index | archive | help
> As for searching / analysis, I've seen php-syslog-ng > ( http://www.vermeer.org/projects/php-syslog-ng ), which looks very basic, > and phpLogCon ( http://www.phplogcon.com/ ), which does not support PG > anyway. Is there anything better GUI-wise? As for the log analysis, I remember attending a security seminar where the conclusion was that a good log analysis system should let you define what events are unimportant and could be ignored so that all other events, including the unexepected ones are shown as important and requiring action. Best regards, Olivier
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200602170248.k1H2mhKn041207>