[Twisted-Python] Implementing a syslog-deamon ??

Thomas Weholt 2002 at weholt.org
Thu Jul 10 10:59:26 MDT 2003


Talk about a success story!

To make a long story short; at work we needed a syslog-deamon to use with
our firewall because we got some problems with attacks and virii sending
mass-emails using our SMTP-server. To better get a grip on the log generated
by the firewall we wanted to send it to a syslog-deamon and parse the data,
possible stuff it into a database. I created a UDP/HTTP server listening on
514 for syslog data and serving current status, reports and management pages
using http/html on 8080. A small project, but it did lift some eyebrows on
some of my co-workers and they started talking about additions and new
functionality they wanted.

Now we got a webpage showing the latest activity, archives for older logs
etc.

All done in less than 30 minutes thanks to Twisted!! :-)

Best regards,
Thomas


----- Original Message -----
From: "Moshe Zadka" <m at moshez.org>
To: <twisted-python at twistedmatrix.com>
Sent: Thursday, July 10, 2003 11:48 AM
Subject: Re: [Twisted-Python] Implementing a syslog-deamon ??


> On Thu, 10 Jul 2003, "Thomas Weholt \( PRIVAT \)" <2002 at weholt.org> wrote:
>
> > I was wondering if I could implement a fully syslog-compatible
> > syslog-deamon/server using Twisted?
>
> Yes it is. Writing a syslog is not extremely hard.
> [Note that it will probably constrain your mounting order, since syslog
> has to start pretty soon. OTOH, putting /usr/ on a different partition
> than / is an obsolete idea, so that shouldn't be a big problem.]
>
> > We need a syslog up and running as soon
> > as possible to let our firewall use it, due to some suspicion about
hacking
> > etc.
>
> "As soon as possible" and "implement my own" are usually at odds.
>
> > It would help alot of I could implement a syslog-deamon that put data
> > sent to it into a database, instead of to a file. The server must be
able to
> > run on Windows.
>
> Why? What in syslog logs to a a syslog daemon? More importantly, syslog
> relies on unix-specific APIs, IIRC, like named pipes or unix domain pipes.
>
> --
> Moshe Zadka -- http://moshez.org/
> Buffy: I don't like you hanging out with someone that... short.
> Riley: Yeah, a lot of young people nowadays are experimenting with
shortness.
> Agile Programming Language -- http://www.python.org/
>
> _______________________________________________
> Twisted-Python mailing list
> Twisted-Python at twistedmatrix.com
> http://twistedmatrix.com/cgi-bin/mailman/listinfo/twisted-python
>
>





More information about the Twisted-Python mailing list