On 07-Jun-2002 at 16:15:37 Rich Henning wrote: > On Thu, Jun 06, 2002 at 05:37:53PM +0100, John Horne wrote: >> We have a Sun Solaris system which logs syslog messages from our router >> access control lists. Does anyone know if there is any software which >> will perform syslog file analysis and/or some form of intruder >> detection? > I use swatch on my Sun machines for this; you can just egrep and have > swatch send an email, etc. It's a very simple program, but doesn't > really do any kind of verbose reporting or anything. > Yes, swatch we use for monitoring logs files. I really wanted something that did more of the analysis rather than just reporting that something had happened.
Thanks for the reply, John. ------------------------------------------------------------------------ John Horne, University of Plymouth, UK Tel: +44 (0)1752 233914 E-mail: [EMAIL PROTECTED] PGP key available from public key servers
