Syslog-ng 3 - a step towards log processing
Description : The presentation will give a short introduction to system logging, log collection, syslog-ng and the to the new features of the recent 3.0 release. In 3.0 a new log message parser/classifier framework was introduced to extend syslog-ng capabilities from log collection and forwarding to the better handling of message content. Today mostly regular expressions are used for message processing which are hard to use and do not provide the performance for high volume on-line log processing. The presentation will focus on this new feature and will show how it could be used to parse and classify large volume of messages for reporting, alerting or log correlation.
Speaker : Marton Illes, Syslog-ng developper.
Marton is a hungarian developper working in the security area. He contributes to Syslog-ng.
Portfolio
Documents joints
