LogAnalysis
[logs] Passive syslog monitoring Jan 29 2008 11:00PM
ron dilley (ron dilley gmail com) (1 replies)
List,

I have just posted an update to the Passive Syslog Monitoring Daemon (
http://sourceforge.net/projects/psmd).

Included are tons of bug fixes and a few interesting new features:

* TCP reassembly of syslog over TCP (syslog-ng)
* Logging of lost log data
* TIMEMARK messages to record TZ and clock skew issues (tnx Marcus)

Previous features:

* Passive syslog monitoring (no listening port required)
* Time on wire (with year!), Src & Dst MAC and IP address logging
* MD5/SHA1 hashing of log data archived to disk
* UDP Forwarding of logs with or without forged source IP

Ron
List,<br><br>I have just posted an update to the Passive Syslog Monitoring Daemon (<a href="http://sourceforge.net/projects/psmd">http://sourceforge.net/proje
cts/psmd</a>).<br><br>Included are tons of bug fixes and a few interesting new features:<br>
<br>* TCP reassembly of syslog over TCP (syslog-ng) <br>* Logging of lost log data <br>* TIMEMARK messages to record TZ and clock skew issues (tnx Marcus)<br><br>Previous features:<br><br>* Passive syslog monitoring (no listening port required) <br>
* Time on wire (with year!), Src & Dst MAC and IP address logging <br>* MD5/SHA1 hashing of log data archived to disk <br>* UDP Forwarding of logs with or without forged source IP<br><br>Ron<br>
_______________________________________________
LogAnalysis mailing list
LogAnalysis (at) loganalysis (dot) org [email concealed]
http://www.loganalysis.org/mailman/listinfo/loganalysis

[ reply ]
Re: [logs] Passive syslog monitoring Jan 30 2008 12:06AM
Mordechai T. Abzug (morty frakir org) (1 replies)
Re: [logs] Passive syslog monitoring Jan 30 2008 12:25AM
ron dilley (ron dilley gmail com)


 

Privacy Statement
Copyright 2010, SecurityFocus