syslog on SWiK

Aanval - Console, Appliance and Training Information

Fri, 16 May 2008 03:06:31 -0700

Advanced Log Processing

Mon, 21 Apr 2008 07:20:46 -0700

Using Syslog information with SourceLabs Linux Self-Support

Mon, 24 Mar 2008 12:31:39 -0700

Below is documentation for using SourceLabs Self-Support Suite for Linux and Open Source Java to gather, organize, and search Syslog messages.

You can setup syslog to connect to the relay. In this release, we only support syslog over UDP. To set this up, you need to modify your syslogd config file. Often this is in /etc/syslog.conf

To get started, you can add

. @relayMachineName:4657

This will send all your syslog messages to a machine named relayMachineName over port 4657. Port 4657 is the default port the relay listens to for Syslog UDP messages. You can change this in the relay’s property file. This properties file is located in the ‘conf’ directory of your relay installation (e.g. /opt/sourcelabs/relay/conf).

To filter the syslog messages sent to the relay, please read the syslog documentation or man pages for more information.

Syslog-ng:

You can also setup syslog-ng to use the relay. For the current version of the relay, you will need to use UDP logging to the relay instead of TCP. To set this up, you need to modify your syslog-ng config file. Often this is in /etc/syslog-ng.conf

To get started, you can add


destination d_relay { udp("relayMachineName ", port(4657)); };
log { source(s_sys); destination(d_relay); };

Assuming that you are using a default syslog-ng configuration where source ‘s_sys’ represents all syslog messages (modify source as necessary for your configuration),this will send all your syslog messages to a machine named relayMachineName over port 4657. Port 4657 is the default port the relay listens to for Syslog UDP messages. You can change this in the relay’s property file. This properties file is located in the ‘conf’ directory of your relay installation (e.g. /opt/sourcelabs/relay/conf).

To filter the syslog messages sent to the relay, please read the syslog documentation or man pages for more information.

Find more information about SourceLabs Self-Support Suite for LInux and Open Source Java

Hugo van der Kooij: EMAIL: MailScanner

Mon, 03 Mar 2008 01:40:39 -0800

syslogd supporting MySQL and TCP :: rsyslog

Thu, 31 Jan 2008 13:26:06 -0800

Rsyslog is an enhanced multi-threaded syslogd supporting, among others, MySQL, syslog/tcp, RFC 3195, permitted sender lists, filtering on any message part, and fine grain output format control

Snare EventLog Agent for Windows - Event Log transfer to Snare & Syslog servers - Open Source

Thu, 24 Jan 2008 15:05:23 -0800

Output Modules

Wed, 02 Jan 2008 11:42:46 -0800

syslogd supporting MySQL and TCP :: rsyslog

Sun, 30 Dec 2007 12:08:39 -0800

OSSEC

Thu, 20 Dec 2007 19:58:53 -0800

Open Source Host-based Intrusion Detection System. Performs log analysis, interity checking, Windows registry monitoring, rootkit detection, real-time alerting and active response.`

Aanval - Console, Appliance and Training Information

Tue, 18 Dec 2007 10:34:57 -0800

Splunk > The IT Search Engine

Sun, 16 Dec 2007 06:14:12 -0800

Snare EventLog Agent for Windows - Event Log transfer to Snare & Syslog servers - Open Source

Wed, 12 Dec 2007 11:42:26 -0800

postfix debian syslog tuning

Tue, 20 Nov 2007 18:07:10 -0800

influenced dot net " Blog Archive " Fine tuning Postfix mail logs

Tue, 20 Nov 2007 16:07:13 -0800

socklog - system and kernel logging services

Sun, 04 Nov 2007 20:24:23 -0800

SourceForge.net: Project Lasso

Sat, 03 Nov 2007 05:24:30 -0700

Fun with OSGi: Some use for the database bundle

Thu, 01 Nov 2007 11:25:05 -0700

Fun with OSGi: Some use for the database bundle

Thu, 01 Nov 2007 10:21:21 -0700

Windows イベントログを SYSLOG で管理する -- NTsyslog | Windows - P-SOC

Mon, 22 Oct 2007 08:32:53 -0700

Syslog and Windows

Mon, 22 Oct 2007 08:32:52 -0700

Octopussy Project

Sun, 14 Oct 2007 21:16:16 -0700

Octopussy - Perl/XML Logs Analyzer, Alerter & Reporter.

Evtsys : UNIX Software Documentation : Documents and Documentation : Tools, Documents, and Policies - Engineering Computer Network

Fri, 12 Oct 2007 20:08:07 -0700

The Eventlog to Syslog utility is a program that runs on Windows, monitoring eventlog messages. When a new message appears in the eventlog, it is read, formatted, and forwarded to a UNIX syslog server.

Welcome to LogReport

Thu, 11 Oct 2007 07:45:42 -0700

Bug #26986 - Comment #8

Mon, 01 Oct 2007 12:56:12 -0700

PEAR :: Package :: Log

Thu, 27 Sep 2007 09:04:08 -0700

Aanval - Commercial & Free Intrusion Detection Console / IDS / GUI / Interface

Sat, 15 Sep 2007 12:18:23 -0700

Snort & syslog correlation system

Logging with syslog-ng

Wed, 29 Aug 2007 14:09:04 -0700

Snare EventLog Agent for Windows - Event Log transfer to Snare & Syslog servers - Open Source

Sat, 25 Aug 2007 11:04:44 -0700

SourceForge.net: Project Lasso

Thu, 23 Aug 2007 22:04:53 -0700

Downloads

Wed, 22 Aug 2007 05:15:28 -0700