From owner-freebsd-questions@FreeBSD.ORG Mon Jan 24 22:05:09 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 821B616A4CE for ; Mon, 24 Jan 2005 22:05:09 +0000 (GMT) Received: from idesigns.net (idesigns.net [209.239.38.159]) by mx1.FreeBSD.org (Postfix) with ESMTP id A2DF243D1F for ; Mon, 24 Jan 2005 22:05:08 +0000 (GMT) (envelope-from software@schmittnet.com) Received: from [127.0.0.1] (ct-seymour2d-19.wtrbct.adelphia.net [68.71.172.19]) by idesigns.net (8.12.10/8.12.10) with ESMTP id j0OM544l007954 for ; Mon, 24 Jan 2005 17:05:05 -0500 Message-ID: <41F57119.4090809@schmittnet.com> Date: Mon, 24 Jan 2005 17:05:13 -0500 From: "Bill Schmitt (SW)" User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: questions@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Need a recommendation for Log File Analysis X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 24 Jan 2005 22:05:09 -0000 I'm looking for an application to run on our FreeBSD 4.9 server that will allow some mining of data from our mail logs (Postfix). For example, what ip's are rejected because they are incorrectly formatted or what domains are not providing reverse dns entries (which we reject). Being able to mine down looking for repeated mailings to invalid mailboxes would be nice. Looking at the information in the ports doesn't seem to indicate a specific application that does these things. Does this kind of animal exist?