Actually, i'm doinng a study between different tools "Open Source" for manage and monitoring logs, and i should give a report to my head.
I'm searching more information about "Logwatch", the tool seem very useful whereas there is enough information on it, i search more information about logging and log managment:
- Centralized ,
- Distributed logging,
- Log rotation & retention,
- Systems logs,
- Security logs,
- Performanace logs,
- Application Logs.
Is the tool able to ensure all these fonctions?.
Please, can you give me some documentation about Logwatch?
Thank you at advance.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Logwatch is a log summarizer/reporting tool. It reads the logfiles and creates statistics over a specified time range.
It can create reports over all logfiles or split them by hosts.
The best source for documentation are the sources by itself. Have a look into the tarball. Or use the logwatch version shipped with your distribution.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Hi All,
I have an Ubuntu 20.04 home-purpose-usage operating system. Sometimes to fine-tuning or look after a problem I need to see some logs and correlate them to other type of logs. I have already realized that several types of logs created continuously: application logs kernel logs, HW device logs operating system logs
I have an intention to collect as many type of logs as I can then consolidate & normalizate them to each -other. My final intention is to create a warning system on the severe error messages either regarding apps, kernel modules, HW drivers, operating system logs.
Please help me to create a local file based system for home purpose users to deal with the problem that I mentioned. I can imagine that some activities like these: Log consolidation, Log management Log normalization We can create for example some shell-scripts (with regular expressions) to evaluate logs and look for the severe things. The SIEM systems do similar activities but at company level, gathering logs via network. My intention is to do the same for a home Linux system locally with free tools. What is your opinion about that?
Is it Logwatch the best solution?
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Hi,
Actually, i'm doinng a study between different tools "Open Source" for manage and monitoring logs, and i should give a report to my head.
I'm searching more information about "Logwatch", the tool seem very useful whereas there is enough information on it, i search more information about logging and log managment:
- Centralized ,
- Distributed logging,
- Log rotation & retention,
- Systems logs,
- Security logs,
- Performanace logs,
- Application Logs.
Is the tool able to ensure all these fonctions?.
Please, can you give me some documentation about Logwatch?
Thank you at advance.
Logwatch is a log summarizer/reporting tool. It reads the logfiles and creates statistics over a specified time range.
It can create reports over all logfiles or split them by hosts.
The best source for documentation are the sources by itself. Have a look into the tarball. Or use the logwatch version shipped with your distribution.
Thank you stef
Hi All,
I have an Ubuntu 20.04 home-purpose-usage operating system. Sometimes to fine-tuning or look after a problem I need to see some logs and correlate them to other type of logs. I have already realized that several types of logs created continuously: application logs kernel logs, HW device logs operating system logs
I have an intention to collect as many type of logs as I can then consolidate & normalizate them to each -other. My final intention is to create a warning system on the severe error messages either regarding apps, kernel modules, HW drivers, operating system logs.
Please help me to create a local file based system for home purpose users to deal with the problem that I mentioned. I can imagine that some activities like these: Log consolidation, Log management Log normalization We can create for example some shell-scripts (with regular expressions) to evaluate logs and look for the severe things. The SIEM systems do similar activities but at company level, gathering logs via network. My intention is to do the same for a home Linux system locally with free tools. What is your opinion about that?
Is it Logwatch the best solution?