To piggy-back Daniel's response, this is exactly what I use it for. I don't use the agents at all, just a local installation with the daemon pointed to the syslog-ng hosts directory.
Daniel Cid wrote: > Hi Wilson, > > OSSEC can definitely monitor your logs and generate alerts on real > time. That's why it > was written for :) > > Thanks, > > -- > Daniel B. Cid > dcid ( at ) ossec.net > > On 10/10/07, Wilson Lai <[EMAIL PROTECTED]> wrote: > >> >> >> Dear ALL, >> >> I have now installed the Syslog-NG server for centralizing all >> syslog messages from windows >> >> and linux machines. And now, I am looking forward a monitoring tool that >> could check the severity level >> >> of the incoming message and alert me through e-mail. >> >> Another question, once the event message has sent to the Syslog-NG >> server, could OSSEC alert me >> >> by e-mail immediately (real time alerting)? >> >> Thanks. >> >> >> >> Regards, >> >> Wilson Lai >> >> System Engineer >> >> IT Dept., SJM >> >> Office ( : (853)2978585 >> >> Mobile ( : (853)66506709 >> >> Email +: : [EMAIL PROTECTED] >> >> >>
