No problem
Quote:
But what tools would help to analyse the logs ?
|
I already mentioned logcheck, which can help you.
Personally I use logcheck and make sure that all facilities have their own logs and within that all priorities have their own log (ie: kernel.0.log -> kernel.7.log, mail.0.log -> mail.7.log etc).
I also have an allmessages file, which is used by logcheck. Logcheck sends me mail if it is triggered by a 'suspicious' logentry. Although logcheck has a set of predifined triggers, I had to spend a lot of time to tailer/add these.
There must be other analyse tools around, although I don't have any experience with them.
Hope this helps.