Re: Alternatives to security/swatch
On 2020-03-17 02:16, Dan McGrath wrote: Hi, Just a heads up that I also had bug report #243609 [1] open on this that I guess can/should be closed now. Thanks to all. This is good news. bye av. ___ freebsd-ports@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"
Re: Alternatives to security/swatch
Hi, Just a heads up that I also had bug report #243609 [1] open on this that I guess can/should be closed now. Dan [1] https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=243609 On Mon, Mar 16, 2020 at 3:57 AM Guido Falsi via freebsd-ports < freebsd-ports@freebsd.org> wrote: > On 15/03/20 18:09, Andrea Venturoli wrote: > > Hello. > > > > I'm using security/swatch to look *in real time* for specific strings in > > my logs, but now it's deprecated because it's unfetchable. > > > > Can someone suggest an alternative? > > > > N.B. I'm not looking for something that will parse logs at specified > > times (e.g. run from cron); I already have logcheck. > > I'm using swatch, in addition to that, to look for things that require > > immediate attention, by piping syslogd into it. > > > > Bonus for not requiring too many dependencies :) > > In the past I've used misc/logsurfer for such purpose. > > I'm not using it anymore since I'm now using fail2ban for the purpose. > BTW it also does monitor log files in real time and with clever > programming could also work as a notification system, but I agree that's > not it's primary purpose. > > -- > Guido Falsi > ___ > freebsd-ports@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-ports > To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org" > -- Cheers, Danny -- Danny McGrath - danmcgrath...@gmail.com GPG key: EDF6 AFF5 2086 F93A 1F59 36A5 44B6 26F3 6968 71CA ___ freebsd-ports@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"
Re: Alternatives to security/swatch
On 15/03/20 18:09, Andrea Venturoli wrote: > Hello. > > I'm using security/swatch to look *in real time* for specific strings in > my logs, but now it's deprecated because it's unfetchable. > > Can someone suggest an alternative? > > N.B. I'm not looking for something that will parse logs at specified > times (e.g. run from cron); I already have logcheck. > I'm using swatch, in addition to that, to look for things that require > immediate attention, by piping syslogd into it. > > Bonus for not requiring too many dependencies :) In the past I've used misc/logsurfer for such purpose. I'm not using it anymore since I'm now using fail2ban for the purpose. BTW it also does monitor log files in real time and with clever programming could also work as a notification system, but I agree that's not it's primary purpose. -- Guido Falsi ___ freebsd-ports@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"
Re: Alternatives to security/swatch
On Sun, 15 Mar 2020 18:26:53 +0100 Andrea Venturoli wrote: > On 2020-03-15 18:16, Michael Gmelin wrote: > > > swatch is still available as a new version on sourceforge (3.2.4). > > Hmm... > From the port, website is here: > > http://swatch.sourceforge.net/ > Nothing to download, it seems, from there. > > There's also: > https://sourceforge.net/p/swatch/ > It was last updated in 2015, though and there are a lot of open > issues. > > I'm not sure it's still developed... > > > > > So someone (maybe the maintainer, put him on Cc), could > > update/unbreak the port. > > I don't think I have the expertise to do this, as I'm totally > ignorant in PERL. > > > > > Maybe I’ll take a look myself later, would you be willing to test? > > Of course I would! > Hi Andrea, The project was renamed from "swatch" to "swatchdog", I renamed it in the ports tree to match upstream and updated it to 3.2.4. Please note that everything inside was renamed to swatchdog, including the service script and variable prefixes in /etc/rc.conf. You can install it using portsnap fetch update cd /usr/ports/security/swatchdog make install clean (deinstall swatch beforehand) Cheers, Michael -- Michael Gmelin ___ freebsd-ports@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"
Re: Alternatives to security/swatch
On 2020-03-15 18:16, Michael Gmelin wrote: swatch is still available as a new version on sourceforge (3.2.4). Hmm... From the port, website is here: http://swatch.sourceforge.net/ Nothing to download, it seems, from there. There's also: https://sourceforge.net/p/swatch/ It was last updated in 2015, though and there are a lot of open issues. I'm not sure it's still developed... So someone (maybe the maintainer, put him on Cc), could update/unbreak the port. I don't think I have the expertise to do this, as I'm totally ignorant in PERL. Maybe I’ll take a look myself later, would you be willing to test? Of course I would! bye & Thanks av. ___ freebsd-ports@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"
Re: Alternatives to security/swatch
> On 15. Mar 2020, at 18:10, Andrea Venturoli wrote: > > Hello. > > I'm using security/swatch to look *in real time* for specific strings in my > logs, but now it's deprecated because it's unfetchable. > > Can someone suggest an alternative? > > N.B. I'm not looking for something that will parse logs at specified times > (e.g. run from cron); I already have logcheck. > I'm using swatch, in addition to that, to look for things that require > immediate attention, by piping syslogd into it. > > Bonus for not requiring too many dependencies :) swatch is still available as a new version on sourceforge (3.2.4). So someone (maybe the maintainer, put him on Cc), could update/unbreak the port. Maybe I’ll take a look myself later, would you be willing to test? -m > > bye & Thanks >av. > ___ > freebsd-ports@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-ports > To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org" ___ freebsd-ports@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"
Alternatives to security/swatch
Hello. I'm using security/swatch to look *in real time* for specific strings in my logs, but now it's deprecated because it's unfetchable. Can someone suggest an alternative? N.B. I'm not looking for something that will parse logs at specified times (e.g. run from cron); I already have logcheck. I'm using swatch, in addition to that, to look for things that require immediate attention, by piping syslogd into it. Bonus for not requiring too many dependencies :) bye & Thanks av. ___ freebsd-ports@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"
