Log file IDS package?
Hi,
I've done some cursory apt-cache searching, and nothing's jumped out at
me...
Is there software in Debian that will do something along the lines of a tail
-f of a given logfile, looking for supplied regexs and do custom actions on
matches?
I want to tarpit excessive SSH login failures.
regards
Andrew
--
linux.conf.au 2005 - http://linux.conf.au/ - Birthplace of Tux
April 18th to 23rd - http://linux.conf.au/ - LINUX
Canberra, Australia - http://linux.conf.au/ - Get bitten!
Reply to: