Re: traffic analysis

[Christopher Hicks <chicks () chicks net>]

On Wed, 28 May 2003, R. DuFresne wrote:

> In the unix world, sed/awk/grep are your friends, iin the windows world
> there are ports of thosee unix tools that can help in this area

sed, awk, and grep are my friends, but Perl has become family.  :)  
ActiveState ( http://www.activestate.com/ ) provides a good implementation 
of Perl for Win32 platforms.

> ...of course, some are adverse to rolling their own and prefer
> preinvented wheels to work with. 

A number of modules for parsing various log formats already exists, so
you'll probably only have to write code to do the analysis.  (There are
statistics modules to assist with this even.)

> But, they sometimes tend to give up specifics of functionality that a
> handrolled method can proviide. It depends upon the time and resources
> one wishes to push that way, though this does not sound like too
> resource intensive of a task.

And Perl can be useful for many other admin tasks.... :)

-- 
</chris>

The death of democracy is not likely to be an assassination from ambush. It
will be a slow extinction from apathy, indifference, and undernourishment.
-Robert Maynard Hutchins, educator (1899-1977)

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards