LinuxQuestions.org
Did you know LQ has a Linux Hardware Compatibility List?
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Mandriva
User Name
Password
Mandriva This Forum is for the discussion of Mandriva (Mandrake) Linux.

Notices

Reply
 
Search this Thread
Old 01-16-2006, 02:11 AM   #1
Emmanuel_uk
Senior Member
 
Registered: Nov 2004
Distribution: Mandriva mostly, vector 5.1, tried many.Suse gone from HD because bad Novell/Zinblows agreement
Posts: 1,604

Rep: Reputation: 47
Lire (log analysis, log report) no report in Mandriva 2005 LE (desktop usage)


Hi, I cannot get lire 2.01 (installed from the
dvd rpms of Mandriva 2005 LE) to create any report.

In, brief, does anybody use lire and got it to work straight of the rpms that came with the distro?

My goal is to output an analysis of the hits to the firewall (shorewall), and a report of all oddities and warning in /var/log/syslog, including snort warnings.

Lire does not spit any error messages,
and the dlf store does increase in size
everytime the crontab lr_cron hourly /home/my_store runs. I cannot find any output report (using locate and the name of the file report name template given in lire; I tried txt and html formats)

I have installed DBD::SQLite2.
I have run as well lr_run as root, on the command line , got the dlf to increase in size, but never got any warning that I should not run lire as root (however I believe it is supposed to give this kind of message). So this is weird.
I have setup a stream, a report, and selected a type of report as firewall.

Should my_store be in /var/lib/lire/my_store ?
I tried for the file name template of the report just myreport and /home/myreport. I did not try email reporting because the PC is not really setup for sending email automatically (no postfix, nor sendmail configured anyway, if this is what would be needed. Beyonfd me for now. Am happy with kmail).

(Lire website) http://logreport.org/lire/lire201.php

It is for a desktop use. I have no webserver.
I manage to get fwlogwatch to work otherwise, and snortsnarf.
I am not keen to install mysql and apache(I see these as an overkill at this stage).

As a side question, for a desktop log analyser, what would you suggest? I have looked at all these, but they look to complicated for a desktop installation (maybe I am getting it wrong).

Webmin: Webalizer Logfile Analysis
"Generate reports from webserver, proxy server and FTP log files"
Does it do simpler thing like creating report just from /var/log/syslog?

Swatch: got to write my own regexp.
There was a ready made swatch conf files for mandrake rpms.
Swatch will do to catch keywords like error, warnings...
I think I will use it.

http://logrep.sourceforge.net/
Sounds like a hammer to crack nuts.
What confuses me is that I read somewhere that I needed a webserver (apache), or it sounds like most log analalyser need apache. Do I understand this wrongly? Is apache used to format the reports?

Thanks

PS: looking also at http://tud.at/programm/fwanalog/
But not so sure yet it is what I need

Last edited by Emmanuel_uk; 01-17-2006 at 12:55 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
NVIDIA Mandriva LE 2005 Build Errors +log Damatie Mandriva 1 06-08-2005 01:58 PM
how to use squid analysis report generator heero82 Linux - Software 1 06-22-2003 10:23 PM
How to print the log file report in squid? heero82 Linux - Software 0 06-18-2003 12:51 AM
plz help me with the debian bug report log saturn_vk Linux - Software 1 03-28-2003 02:10 PM
Opinions: linux web log report software? ifm Linux - Software 4 08-21-2002 11:51 AM


All times are GMT -5. The time now is 01:16 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration