15 Nov
2005
15 Nov
'05
5:12 a.m.
I have used swatch, logchecker, and logwatch in the past against standard OS logs..
Now I have a centralized syslog system where everything is being pumped directly into multiple MySQL databases.
Are there any log analysis tools that can look at syslog data in a mysql database and send out alerts based on it?
Why not just use swatch or sec and an alternate destination to handle the alerts?
I'd prefer not to send it to two locations.. Its already being pumped into a database. I'd rather not pump it to files as well. Mike