----- Forwarded by Richard Meyer/Australia/Contr/IBM on 31/01/2003 09:39 AM
-----
Darren
<dylnx at westnet.co To: PLUG <plug at plug.linux.org.au>
m.au> cc:
Subject: [plug] log file checking
31/01/2003 08:47
AM
Please respond to
plug
>hi is there software available that can monitor my log files for
>suspicious activity's then notify me of any problems or attempts ?.i run
>sme server with an adsl connection to the net . what is good practice
>when checking logs? .how do other plugers check and maintain log files
>??
>thanks Darren
I was reading about a package that does this last night - called mom - yes,
mom. It may be much more than you need. According to the blurb, the server
portion sits on a central computer and clients send it information, which
it uses to warn about suspicious activity.
RichardM