Logcheck 1.2.45 review

Logcheck parses system logs and generates email reports based on anomalies

License: GPL (GNU General Public License) File size: 0K Developer: Todd Troxell

0

Logcheck parses system logs and generates email reports based on anomalies. Anomolies can be defined by users with 'violations' files.

It differentiates between 'Active System Attacks', 'Security Violations', and 'Unusual Activity', and is smart enough to remember where in the log it stopped processing to improve efficiency.

Logcheck project can also warn when log files shrink, and does not report errors when they are rotated.

What's New in This Release:
This release includes pacakging and documentation changes.
Rulefile updates were done for smartd, sudoedit, dhcp, ipv6, openssh, oidentd, pdns, xinetd, saslauthd, postfix, spamassassin, dkfilter, anacron, dovecot, kdm, nagios, sympa, stunnel, squid, rsync, rsnapshot, proftpd, ntp, Linux kernel, cron, cron-apt, pppd, and squidguard.