[syslog-ng] Pattern extraction
Anton Chuvakin
anton at chuvakin.org
Fri Aug 13 16:48:03 CEST 2010
> I dont know how can i extract pattern form logs, I must check every log type separately?, using pattern recognition methods? or using
>pattern database (if exist for all aplication and device)?
Well, this is not just you - it is "you and the rest of the world."
The standard way is pretty much to manually (or with tools - but still
mostly manually) write regular expressions for every distinct log
message type.
--
Dr. Anton Chuvakin
Site: http://www.chuvakin.org
Blog: http://www.securitywarrior.org
LinkedIn: http://www.linkedin.com/in/chuvakin
Consulting: http://www.securitywarriorconsulting.com
Twitter: @anton_chuvakin
Google Voice: +1-510-771-7106
More information about the syslog-ng
mailing list