Security Incidents mailing list archives

Re: Looking for program to analyze logs

From: nick () SECURIFY COM (Nicholas de Jong)
Date: Wed, 22 Mar 2000 16:39:00 -0500


Actually I wrote a PERL script to handle this kind of problem the other week, it is good for log files up to about 
3-4megs really, yes I should give it a rewrite to handle larger log files, but hey....  I already sent a copy to Mieth 
if anyone else is interested, send me an email.

Nick
========================================================
Nicholas de Jong    -    Information Security Consultant
Securify Inc.                                           
Phone: +1-212-833-3390           Mobile: +1-917-447-3148
PGP: 5333 E496 5711 E0E3 590B  58C8 1C0C 74B0 8471 3210
========================================================
 

-----Original Message-----
From: Incidents Mailing List [mailto:INCIDENTS () SECURITYFOCUS COM]On
Behalf Of Mieth Lindsay
Sent: Tuesday, March 21, 2000 9:53 AM
To: INCIDENTS () SECURITYFOCUS COM
Subject: Looking for program to analyze logs

Reviewing your messages and seeing the traffic I am working with, I have
surmised that you have some pretty decent tools to work with.  Our PIX
produces about 500mb of logs a day which means I might as well not have
logging since there is no way I can review this amount of data myself.
Would you please recommend an analyzing tool to break out the important or
at least likely important information from the logs?

Sincerely,

Lindsay Mieth

Current thread:

Looking for program to analyze logs Mieth Lindsay (Mar 21)
- Looking for program to analyze logs Klaus Moeller (Mar 22)
- Re: Looking for program to analyze logs (CMDS from ODS) Ron Gula (Mar 22)
- Re: Looking for program to analyze logs Brian Macke (Mar 22)
  - Re: Looking for program to analyze logs - - (Mar 22)
  - FTP connection attempts JF Prieur (Mar 23)
    - Re: FTP connection attempts Bill Pennington (Mar 24)
- Re: Looking for program to analyze logs Nicholas de Jong (Mar 22)