Psionics logcheck is an excellent program. It puts portsentry attacks at
top of the list with email title of ATTACK ALERT. Try it out.
Kirk
At 11:38 AM 2/15/00 -0600, you wrote:
>Apparently the logwatch that ships with Red Hat is no longer being
>supported or developed (or I've not found the right list/web site). I'd
>like to scan my logs for portsentry attack alerts. I'm doing this now with
>a really simple script but it's a messy solution. Has anyone created a
>logwatch filter for portsentry? Or should I switch to another logwatch
>(like psionic's)?
>
>-Alan
>---
>Alan D. Mead / Research Scientist / [EMAIL PROTECTED]
>Institute for Personality and Ability Testing
>1801 Woodfield Dr / Savoy IL 61874 USA
>217-352-4739 (v) / 217-352-9674 (f)
>
>
>--
>To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
>as the Subject.
>
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
