85369 – tenshi reading snare logs?

Bug 85369 - tenshi reading snare logs?

Summary: tenshi reading snare logs?

Status:	RESOLVED INVALID

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	All Linux

Importance:	High enhancement (vote)
Assignee:	Tenshi Group User

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2005-03-15 09:31 UTC by Eric Brown
Modified:	2005-03-16 06:30 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Eric Brown 2005-03-15 09:31:22 UTC

I've had such good luck with tenshi reading regular syslog files that I want to have my windows logs audited by tenshi also.  I found a Free (GNU) program called backlog NT (SNARE) that is capable of sending to a syslog server (and it actually works so far).

The weird thing is that the log format looks different.  What I'm proposing is that we add an option for each logfile added to specify the type, this way, we could add support for these SNARE logs.

I am willing to help and I'll probably start working on this before you respond, but I want to know what the devs/users think.

Reproducible: Always
Steps to Reproduce:
1.
2.
3.

Comment 1 rob holland (RETIRED) gentoo-dev

2005-03-15 11:22:28 UTC

please see the log_prefix option in man tenshi.

Comment 2 Eric Brown 2005-03-16 06:30:10 UTC

Actually I was playing with it a little and even with hidepid and no special prefix, it seems to work almost normally..

Tenshi owns =)