From owner-freebsd-ports@freebsd.org Tue Mar 17 01:16:26 2020 Return-Path: Delivered-To: freebsd-ports@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 35D4427538F for ; Tue, 17 Mar 2020 01:16:26 +0000 (UTC) (envelope-from troubledaemon@gmail.com) Received: from mail-qt1-x831.google.com (mail-qt1-x831.google.com [IPv6:2607:f8b0:4864:20::831]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 48hFcS2WLRz3Jrn for ; Tue, 17 Mar 2020 01:16:24 +0000 (UTC) (envelope-from troubledaemon@gmail.com) Received: by mail-qt1-x831.google.com with SMTP id v15so16121738qto.2 for ; Mon, 16 Mar 2020 18:16:24 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=etAXMNBpWVyUWqZ/xvRkeMbljiMy7O4h1vYL1JpzJ4U=; b=X+ap/QIj9bPQHMuho+9cKdms9rGadL17jV7U1ke2LCkyvDjo+nA5N6v3PbWHiaQUMm bfMk9PWKpA7JIbxG1+7cngHT0iyIWInEDbBz2x/+wwe1xuFCbKZlhpI8xcEjF6dWh2mO Nk3DfZehUsXStOK1Tjl4YjNLEPT83Z0s84vPSkrKaydwq6iTpuU36Vs82ZiLuKOHyVq5 1b4+z5N5AVpwljpntU9bUmZsMvURcsPU6SLtyHSOgZ/y5ysVp9fc+UQcAKG+28qIImvL FGTmRBSnAv2Hf/aJMtyX82sRkFq2fNKm085dC1kLOy70vZ1FyZx5+vBys1MbomUzQmpC AZnQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=etAXMNBpWVyUWqZ/xvRkeMbljiMy7O4h1vYL1JpzJ4U=; b=dWxuIWACV0SL2DIf0qEZXvhCKS5nRfSgZnEbbYtIrvR/p8KPW6a+MZvD5VhpiJqPTB p5C+69WleshMBMNyiVKSVPV/rgDgo1jHlpnHJQCWbea06vHLEfxJvsWWXfLq2W1xOlCy 3zpU4+Detw1E+EzSw3PHTce/Ol8nSwki2frWEyqtNnbXtkAMeb5Woo2ZYBDdsn4b09U8 CbchSOVU4doTofnHRFeJkSH6B18ZzcHhfoU665ush/1YAJ08PLOrNhof1oCr52tNTOlV 8CesNmYJ4thPzaS9MsFNIMXiNn/5kriF/wl6WVicD2qIXLcgQrD6DUH7w+/Fszu7q/NW Z/fA== X-Gm-Message-State: ANhLgQ2JhPqrMdBi/StaydsyaC+1C0CPdBlJC59yYFiDiUO77qInM75b 6tb4jDnNcAfl9g5wKgukWVB4i4idNchD6K6JYWvLQgt/ X-Google-Smtp-Source: ADFU+vvuKANX/mbkKkCLI1EdFbsrLwhJKtbVyW15/hCLNIyovTmd67xfUjRq+69p33xFnySSpOz6KR2YkudZdzOX0RY= X-Received: by 2002:ac8:7a96:: with SMTP id x22mr3277580qtr.0.1584407782257; Mon, 16 Mar 2020 18:16:22 -0700 (PDT) MIME-Version: 1.0 References: <781a0f93-f5dc-9357-0a68-48a8c84478e3@madpilot.net> In-Reply-To: <781a0f93-f5dc-9357-0a68-48a8c84478e3@madpilot.net> From: Dan McGrath Date: Mon, 16 Mar 2020 21:16:11 -0400 Message-ID: Subject: Re: Alternatives to security/swatch To: Guido Falsi Cc: Andrea Venturoli , FreeBSD X-Rspamd-Queue-Id: 48hFcS2WLRz3Jrn X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=X+ap/QIj; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of troubledaemon@gmail.com designates 2607:f8b0:4864:20::831 as permitted sender) smtp.mailfrom=troubledaemon@gmail.com X-Spamd-Result: default: False [-2.70 / 15.00]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; FORGED_SENDER(0.30)[danmcgrathca@gmail.com,troubledaemon@gmail.com]; IP_SCORE(0.00)[ip: (-9.22), ipnet: 2607:f8b0::/32(-1.85), asn: 15169(-1.65), country: US(-0.05)]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com.dwl.dnswl.org : 127.0.5.0]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_NEQ_ENVFROM(0.00)[danmcgrathca@gmail.com,troubledaemon@gmail.com]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-ports@freebsd.org]; IP_SCORE_FREEMAIL(0.00)[]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[1.3.8.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.4.6.8.4.0.b.8.f.7.0.6.2.list.dnswl.org : 127.0.5.0]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.29 X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 Mar 2020 01:16:26 -0000 Hi, Just a heads up that I also had bug report #243609 [1] open on this that I guess can/should be closed now. Dan [1] https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=243609 On Mon, Mar 16, 2020 at 3:57 AM Guido Falsi via freebsd-ports < freebsd-ports@freebsd.org> wrote: > On 15/03/20 18:09, Andrea Venturoli wrote: > > Hello. > > > > I'm using security/swatch to look *in real time* for specific strings in > > my logs, but now it's deprecated because it's unfetchable. > > > > Can someone suggest an alternative? > > > > N.B. I'm not looking for something that will parse logs at specified > > times (e.g. run from cron); I already have logcheck. > > I'm using swatch, in addition to that, to look for things that require > > immediate attention, by piping syslogd into it. > > > > Bonus for not requiring too many dependencies :) > > In the past I've used misc/logsurfer for such purpose. > > I'm not using it anymore since I'm now using fail2ban for the purpose. > BTW it also does monitor log files in real time and with clever > programming could also work as a notification system, but I agree that's > not it's primary purpose. > > -- > Guido Falsi > _______________________________________________ > freebsd-ports@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-ports > To unsubscribe, send any mail to "freebsd-ports-unsubscribe@freebsd.org" > -- Cheers, Danny ---------------------------------------------------------- Danny McGrath - danmcgrath.ca@gmail.com GPG key: EDF6 AFF5 2086 F93A 1F59 36A5 44B6 26F3 6968 71CA