On Tue, May 30, 2017 at 10:37:02PM +0200, Till Maas wrote:
On Mon, May 29, 2017 at 07:21:07PM +0200, Björn 'besser82'
Esser wrote:
> Does this qualify to be a system-wide change? To me this looks like a
> self-contained change, since I don't see any other packages or processes in
> need for adjustment, but rsyslog itself.
>
> Please correct me, if I'm mistaking.
Besides logwatch that was already mentioned, there is also logcheck that
parses logfiles and will break. Other tools might be things like
fail2ban or denyhosts that scan logs for failed login attempts to block
IP addresses.
fail2ban works with journal. BTW, sshguard (which is similar to fail2ban)
works woth journal, too.
--
Tomasz Torcz To co nierealne -- tutaj jest normalne.
xmpp: zdzichubg(a)chrome.pl Ziomale na życie mają tu patenty specjalne.