[ossec-list] Re: Syslog-NG with OSSEC Questions!

["evilghost@xxxxxxxxxxxxxx" <evilghost@xxxxxxxxxxxxxx>]

To piggy-back Daniel's response, this is exactly what I use it for.  I 
don't use the agents at all, just a local installation with the daemon 
pointed to the syslog-ng hosts directory.

Daniel Cid wrote:
> Hi Wilson,
>
> OSSEC can definitely monitor your logs and generate alerts on real
> time. That's why it
> was written for :)
>
> Thanks,
>
> --
> Daniel B. Cid
> dcid ( at ) ossec.net
>
> On 10/10/07, Wilson Lai <wilsonlai@xxxxxxxxxxxx> wrote:
>   
>>
>>
>> Dear ALL,
>>
>>          I have now installed the Syslog-NG server for centralizing all
>> syslog messages from windows
>>
>> and linux machines. And now, I am looking forward a monitoring tool that
>> could check the severity level
>>
>> of the incoming message and alert me through e-mail.
>>
>>      Another question, once the event message has sent to the Syslog-NG
>> server, could OSSEC alert me
>>
>> by e-mail immediately (real time alerting)?
>>
>>      Thanks.
>>
>>
>>
>> Regards,
>>
>> Wilson Lai
>>
>> System Engineer
>>
>> IT Dept., SJM
>>
>> Office ( : (853)2978585
>>
>> Mobile ( : (853)66506709
>>
>> Email +: : wilsonlai@xxxxxxxxxxxx
>>
>>
>>