[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Log analyser for general use ?

On 01-08-29 Nicolas Bouthors wrote:
> I already found about 
>   - Logsurfer (http://www.cert.dfn.de/eng/logsurf/)
>   - Swatch (http://oit.ucsb.edu/~eta/swatch/)
>   - and many other restricted to *webserver* logs (which is not what I want)

|Package: swatch
|Priority: optional
|Section: admin
|Installed-Size: 144
|Maintainer: Rene Weber <rene_debmaint@elvenlord.com>
|Architecture: all
|Version: 3.0.2-1
|Depends: perl5, libtimedate-perl, libtime-hires-perl, libdate-calc-perl, libfile-tail-perl
|Filename: pool/main/s/swatch/swatch_3.0.2-1_all.deb
|Size: 27626
|MD5sum: ac62e8b38e0d0d3ce2fdd36922c3a387
|Description: log file viewer with regexp matching, highlighting, & hooks
| Swatch is designed to monitor system activity.  In order for Swatch to be
| useful, it requires a configuration file which contains pattern(s) to look
| for and action(s) to perform when each pattern is found.
| .
| A typical action is echoing the matched line in a variety of colours and
| formats including reverse video, bold, underline, and normal, which Swatch
| knows how to do internally.  Other actions include sending mail or
| executing an arbitrary program on the line.
| .
| Swatch is written in perl and uses perl regular expressions for line
| matching.

So, would you please explain what part of swatch restricts it to be only
useful for webserver logs? Also why didn't you try using
packages.debian.org to look if there's already some software released
for this purpose as debian package?

           Debian Developer (http://www.debian.org)
1024/26CC7853 31E6 A8CA 68FC 284F 7D16  63EC A9E6 67FF 26CC 7853

Attachment: pgpAVvZBhy5nL.pgp
Description: PGP signature

Reply to: