Maybe OSSEC do what you want. []s Marcos On Thu, Jan 15, 2009 at 2:43 PM, <m.roth2006@xxxxxxx> wrote: > >Date: Thu, 15 Jan 2009 13:51:22 +0000 > >From: "Michael Simpson" <mikie.simpson@xxxxxxxxx> > >Subject: Re: Setting up centralized logging > >To: "General Red Hat Linux discussion list" <redhat-list@xxxxxxxxxx> > > > >On 1/15/09, Kenneth Holter <kenneho.ndu@xxxxxxxxx> wrote: > >> Thanks for the outline of your setup. > >> > >> I'm a bit tempted to go for rsyslog actually, since it's already > included in > >> the RHN repository. > >> > >> Are there any shortcomings of rsyslog that I should be aware of? I've > read > >> that the config file may be more messy than syslog-ng, but that's pretty > >> much it. > >> > >rsyslog integrates nicely with mySQL as well allowing for all sorts of > >nice information manipulation of really heavy logging loads > > > I think syslog-ng does, as well. In my case, though, we had to preserve the > original logs, in case forensics needs it. > > mark > > -- > redhat-list mailing list > unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe > https://www.redhat.com/mailman/listinfo/redhat-list > -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
