Date: Thu, 29 Aug 2013 21:50:09 -0700 From: Dennis Glatting <freebsd@penx.com> To: Olivier Nicole <Olivier.Nicole@cs.ait.ac.th> Cc: questions@freebsd.org Subject: Re: Tools to analyze syslog logs Message-ID: <1377838209.79276.61.camel@btw.pki2.com> In-Reply-To: <wu7txi7n6fn.fsf@banyan.cs.ait.ac.th> References: <wu7txi7n6fn.fsf@banyan.cs.ait.ac.th>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 2013-08-30 at 11:33 +0700, Olivier Nicole wrote: > Hello, > > What tool do you use to analyze syslog logs? > > All tools I can see in the ports seems to rely heavily on some big > configuration file, that had tons of regexp to filter the event messages. > > I am wondering if some tool exists that would try to make a > classification of the event messages; that one could use to say "this > type of message" is close to "that type of message" hence thy should be > treated the same way, etc. > Something similar was recently discussed on NANOG: http://seclists.org/nanog/2013/Aug/530
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1377838209.79276.61.camel>