[EMAIL PROTECTED] a écrit : >Hi, > >we are using OpenSSH 4.2p1. >Is it possible (with the help of documented or undocumented sshd_config >parameters, or by changing some header file entries in the source) to force >sshd to log to a named pipe instead to syslog? > >
Why not use syslog-ng with a filter? This way you could do whatever you want with your ssh logs even send them to a postgreSQL database and analyse them in realtime with help of some triggers. my 0.02€ -- Christophe Garault
