Linux Software / Network & Internet / Server Tools / Log Analyzers

LMF 0.5

Date Added: November 23, 2010 | Visits: 1.159

Report Broken Link
Printer Friendly Version

Product Homepage
Download (92 downloads)

LMF project is a flexible log monitoring framework that allows the user to match text from log files, using perl regular expressions and capturing parentheses (pattern). An optional external command (trigger) will be executed when a user-specified number of matches (threshold) is found within a user-specified period (within). In additon to the trigger, the rule can also have a message associated with it (message); when the rule is triggered, that message will be logged to the LMF log file. Each rule can also have a duration associated with it (duration); after a rule has been triggered and the duration has expired, an optional external command (release) will be run. Example Rule [SSH - Too many login failures] file = /var/log/secure pattern = Failed password for (S+) from (S+) threshold = 4 within = 1m duration = 10m trigger = /usr/local/lmf/actions/fw drop %2 release = /usr/local/lmf/actions/fw allow %2 message = %name for %1 from %2 - %count in %time secs (%threshold/h %within/s) The above line will dynamically block for 10 minutes the IP address associated with a user who fails to successfully login to the server with SSH using a single username more than 4 times in one minute. For example, lets imagine user harry tries to log in 5 times from IP address 192.168.3.220 in 45 seconds using an invalid password. The following message would be logged to LMFS system log file: SSH - too many login failures for harry from 192.168.3.220 - 5 in 45 secs (4/h 60/s) After the message is logged, the command specified in trigger will be run, which in this case would expand to be: /usr/local/lmf/action/fw drop 192.168.3.220 After 10 minutes, the following release command would be run: /usr/local/lmf/action/fw allow 192.168.3.220.

Requirements: No special requirements

Platforms: Linux

Keyword: Apf, File, Flexible, Internet, Ip, Lmf, Log, Log Analyzers, Log Monitoring, Message, Rule, Ssh, User, Will Be

Users rating: 0/10

License: Freeware

Size: 16.38 KB

USER REVIEWS

More Reviews or Write Review

LMF RELATED

Networking Tools - ip-masq-log 1.0.2 This patch can be used on a masquerading firewall (NAT) to keep a log of all the outgoing masqueraded TCP connections. Its even possible to log the name of the user who has opened the connection. This can be a useful security tool for many small...	10.24 KB
Network Monitors - Windows Event Log Monitoring 12.10.01 Lepide Event Log Manager is a comprehensive Windows event log monitor tool that helps enterprises in efficient log management. With the help of this application, organizations can carry out comprehensive log analysis by continuously monitoring...	31.6 MB
Libraries - Puppet::Log 1.012 Puppet::Log provides a log facility with an optional Tk display. This class implements a log facility with an optional Tk display. I .e once the class is created, you can log messages in it, but the Tk display does no need to be created at the...	5.12 KB
Log Analyzers - Nuhe 0.03 Nuhe is a rule based log monitoring system, which is capable of action when rules are matched againsts log(s) activity. Default Nuhe mode is to run on background (daemon), but it can also be used in foreground and log analyzer mode. Log analyzer...	112.64 KB
Network Information Tools - MZL & Novatech TrafficStatistic 1.0.0 MZL & Novatech TrafficStatistic service reads the user's ethernet packages and allows to see the amount of traffic consumed as an icon in the system tray. So a user, who pays a volume based fee or has a tariff with a volume limit is always aware,...	4.5 MB
Finance - Beanie 0.1 Beanie is a flexible, distributed accounting system for medium-sized companies. It includes back-end batch processing as well as a GTK GUI and provides automated purchases, sales, and nominal ledgers as well as automated invoicing (via email)....	143.36 KB
Audio Tools - phpCDLabelPS 0.0.4 phpCDLabelPS creates labels for your data/MP3 CDs using PHP and PostScript (output will be a postscript file). It is controled by a frontend and a PostScript template. To install, just extract all files somewhere in your webtree. Then point your...	13.31 KB
Multimedia & Graphics - WinX Free DVD to MPEG Ripper 7.0.8 WinX Free DVD to MPEG Ripper brings you with a totally free DVD to MPEG ripping solution. It lets you rest assured that all kinds of DVDs can be compressed and converted to high quality MPEG video. With this DVD to MPEG converter freeware, backing...	30.47 MB
Backup Utilities - Undelete 360 2.1 Undelete 360 is a great file recovery software for Windows that helps you to recover accidentally deleted files. You will be able to restore your data from any storage, including hard drive, camera, USB, flash or other media. It uses fast and...	1.94 MB
Security Tools - pytail: log file monitoring utility 0.0.1 Module to allow for reading lines from a continuously-growing file (such as a system log). Handles log files that get rotated/trucated out from under us. Inspired by the Perl File::Tail module.	9.73 KB

NEW DOWNLOADS IN SERVER TOOLS, LOG ANALYZERS

Server Tools - GAdmin-OpenVPN-Server 0.1.6 GAdmin-OpenVPN-Server is an easy to use GTK+ client for the OpenVPN server in Bridge mode. A GUI for OpenVPN Multi-Client Server bridge. It can generate and use a total of 5 signed certificates and keys including...	245.76 KB
Server Tools - Dual DHCP DNS Server 6.84 DHCP Server alots the IP addresses to computers, while DNS server resolves them. You need DHCP Server if you do not want to manually maintain IP Addresses or you have less IP Addresses than number of machines you have, as dynamic DHCP...	655.36 KB
Server Tools - Localhost Indicator 0.0.1 Localhost Indicator is a simple and highly Ubuntu 10.04 integrated localhost web server indicator of Apache2 status, which takes advantages of the indicator-applet.	20.48 KB
Server Tools - Open DHCP Server 1.45 DHCP Server Open Source Freeware. MultiSubnet DHCP Server supports Dynamic, Static Leases, Relay Agents, BOOTP, PXEBOOT, Options can be Global, Range Specific and Client Specific. Supports filtering of ranges on Mac Address, Vendor and User Class.	30.72 KB
Server Tools - GAdmin-HTTPD 0.1.5 GAdminHTTPD project is an easy to use gtk+ user interface for the Apache HTTPD webserver. Featuring: Default server and multi-vhosting management. User management. Module management. Configuration imports and creations, manual editing,...	481.28 KB
Log Analyzers - Xlogmaster 1.6.1 The Xlogmaster allows comfortable and fast control of the complete system status by offering an easy and comfortable way to process logfiles, status-giving devices or running programs to get a certain information. All output can be translated in...	686.08 KB
Log Analyzers - pmacct 0.11.4 pmacct is a small set of passive network monitoring tools to measure, account and aggregate IPv4 and IPv6 traffic; aggregation revolves around the key concept of primitives (VLAN id, source and destination MAC addresses, hosts, networks, AS...	296.96 KB
Log Analyzers - BruteBlock 0.0.5 BruteBlock project allows system administrators to block various bruteforce attacks on UNIX services. The program analyzes system logs and adds attackers IP address into ipfw2 table effectively blocking them. Addresses are automatically removed...	23.55 KB
Log Analyzers - MySQA 1.0.2 MySQA program is a useful program to analyze log files created by MySQL slow queries or queries that dont use indexes. About MySQL: MySQL is a multithreaded, multi-user, SQL (Structured Query Language) Database Management System (DBMS) with an...	133.12 KB
Log Analyzers - Webalizer 2.01-10 Webalizer is a fast, free web server log file analysis program. The project produces highly detailed, easily configurable usage reports in HTML format, for viewing with a standard web browser. It was written to solve several problems that I had...

Windows Software	BeOS Software
Macintosh Software	Linux Software
PDA Software	OS/2 Software
Mobile Software	Scripts