142ff24311
LogRider is my attempt to improve a popular LogCheck/LogSentry utility. LogCheck uses egrep for periodically scanning system logs for specific alert/hacking signatures based on set of static filters. LogRider is rewritten from scratch with lot of important features added: 1. Strings caught by any filter are excluded from processing by next filters. 2. Actual filters are composed from the set of small sub-filters located in directories that name is given as filter name. Each subfilter contains messages generated by one service. You can easily put additional filters for checking additional services without modification of already existing program and configuration. 3. Configuration is separated from program and moved to standalone file. This means that LogRider may be easily adopted to new platform without modification of program core, and may be easily used for checking multiple logfiles by different filters.
17 lines
726 B
Text
17 lines
726 B
Text
@comment $NetBSD: PLIST,v 1.1 2013/05/07 08:49:28 wiz Exp $
|
|
bin/logrider.sh
|
|
bin/logtail.sh
|
|
share/examples/logrider/ignore
|
|
share/examples/logrider/hacking
|
|
share/examples/logrider/violations
|
|
share/examples/logrider/logrider.conf
|
|
share/examples/logrider/violations_ignore/cvspserver
|
|
share/examples/logrider/violations_ignore/drweb-postfix
|
|
share/examples/logrider/violations_ignore/ftp
|
|
share/examples/logrider/violations_ignore/microbackup
|
|
share/examples/logrider/violations_ignore/misc
|
|
share/examples/logrider/violations_ignore/named
|
|
share/examples/logrider/violations_ignore/nsfbackup
|
|
share/examples/logrider/violations_ignore/pam
|
|
share/examples/logrider/violations_ignore/postfix
|
|
share/examples/logrider/violations_ignore/sshd
|