From owner-freebsd-questions  Thu Sep 24 12:30:29 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id MAA27740
          for freebsd-questions-outgoing; Thu, 24 Sep 1998 12:30:29 -0700 (PDT)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from ainet.com (ainet.com [204.30.40.6])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA27735
          for <questions@FreeBSD.ORG>; Thu, 24 Sep 1998 12:30:28 -0700 (PDT)
          (envelope-from jmscott@ainet.com)
Received: from perl.ainet.com (perl.ainet.com [204.30.40.14])
	by ainet.com (8.9.1/8.9.1) with SMTP id MAA26516
	for <questions@FreeBSD.ORG>; Thu, 24 Sep 1998 12:30:17 -0700 (PDT)
Message-Id: <3.0.5.32.19980924123201.00874a50@mail.ainet.com>
X-Sender: jmscott@mail.ainet.com
X-Mailer: QUALCOMM Windows Eudora Light Version 3.0.5 (32)
Date: Thu, 24 Sep 1998 12:32:01 -0700
To: questions@FreeBSD.ORG
From: "Joseph M. Scott" <jmscott@ainet.com>
Subject: watching syslog
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


	In an effort to keep better track of things I've got a central syslog
machine, all into one file.  What I wanted to do was to watch everything
that goes into this one file ( via syslog ) and watch for specific things (
mail relaying stuff, etc ).  About this time I came across swatch ( which
is also in the ports ), I tried it out for a little while, but after
reading through the code I've got more than a few issues.  I've been unable
to contact the author, and it looks like swatch hasn't been touched in
many, many, many years.  
	So I started working on one.  I've been fairly happy with, although it
doesn't have all the feature of swatch it does the job, it does support
things like qpage ( which I like very much, also in the ports ).  There
some perl issues that are of some concern ( I wrote with 5.00404 ), such as
reliable signals.  I've been thinking about continuing work on this, and
possibly using perl 5.005.  However I was wondering what other FreeBSD'ers
are using in these types of situations.  Syslog is definitely very cool,
but I'd like to know what's happening as it's happening ( via email,
alphanumeric paging, etc ).  Grep'ing through logs after the fact is also
nice, but seems to serve a different approach.

	Thoughts, ideas?

Thanks.

Joseph Scott
jmscott@ainet.com

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message