Download Shareware and Freeware Software for Windows, Linux, Macintosh, PDA

line Home  |  About Us  |  Link To Us  |  FAQ  |  Contact

Serving Software Downloads in 976 Categories, Downloaded 29.872.094 Times

LMF 0.5

  Date Added: November 23, 2010  |  Visits: 839

LMF

Report Broken Link
Printer Friendly Version


Product Homepage
Download (73 downloads)



LMF project is a flexible log monitoring framework that allows the user to match text from log files, using perl regular expressions and capturing parentheses (pattern). An optional external command (trigger) will be executed when a user-specified number of matches (threshold) is found within a user-specified period (within). In additon to the trigger, the rule can also have a message associated with it (message); when the rule is triggered, that message will be logged to the LMF log file. Each rule can also have a duration associated with it (duration); after a rule has been triggered and the duration has expired, an optional external command (release) will be run. Example Rule [SSH - Too many login failures] file = /var/log/secure pattern = Failed password for (S+) from (S+) threshold = 4 within = 1m duration = 10m trigger = /usr/local/lmf/actions/fw drop %2 release = /usr/local/lmf/actions/fw allow %2 message = %name for %1 from %2 - %count in %time secs (%threshold/h %within/s) The above line will dynamically block for 10 minutes the IP address associated with a user who fails to successfully login to the server with SSH using a single username more than 4 times in one minute. For example, lets imagine user harry tries to log in 5 times from IP address 192.168.3.220 in 45 seconds using an invalid password. The following message would be logged to LMFS system log file: SSH - too many login failures for harry from 192.168.3.220 - 5 in 45 secs (4/h 60/s) After the message is logged, the command specified in trigger will be run, which in this case would expand to be: /usr/local/lmf/action/fw drop 192.168.3.220 After 10 minutes, the following release command would be run: /usr/local/lmf/action/fw allow 192.168.3.220.

Requirements: No special requirements
Platforms: Linux
Keyword: Apf File Flexible Internet Ip Lmf Log Log Analyzers Log Monitoring Message Rule Ssh User Will Be
Users rating: 0/10

License: Freeware Size: 16.38 KB
USER REVIEWS
More Reviews or Write Review


LMF RELATED
Libraries  -  Puppet::Log 1.012
Puppet::Log provides a log facility with an optional Tk display. This class implements a log facility with an optional Tk display. I .e once the class is created, you can log messages in it, but the Tk display does no need to be created at the...
5.12 KB  
Network Information Tools  -  MZL & Novatech TrafficStatistic 1.0.0
MZL & Novatech TrafficStatistic service reads the user's ethernet packages and allows to see the amount of traffic consumed as an icon in the system tray. So a user, who pays a volume based fee or has a tariff with a volume limit is always aware,...
4.5 MB  
Finance  -  Beanie 0.1
Beanie is a flexible, distributed accounting system for medium-sized companies. It includes back-end batch processing as well as a GTK GUI and provides automated purchases, sales, and nominal ledgers as well as automated invoicing (via email)....
143.36 KB  
Audio Tools  -  phpCDLabelPS 0.0.4
phpCDLabelPS creates labels for your data/MP3 CDs using PHP and PostScript (output will be a postscript file). It is controled by a frontend and a PostScript template. To install, just extract all files somewhere in your webtree. Then point your...
13.31 KB  
Multimedia & Graphics  -  WinX Free DVD to MPEG Ripper 7.0.8
WinX Free DVD to MPEG Ripper brings you with a totally free DVD to MPEG ripping solution. It lets you rest assured that all kinds of DVDs can be compressed and converted to high quality MPEG video. With this DVD to MPEG converter freeware, backing...
30.47 MB  
Backup Utilities  -  Undelete 360 2.1
Undelete 360 is a great file recovery software for Windows that helps you to recover accidentally deleted files. You will be able to restore your data from any storage, including hard drive, camera, USB, flash or other media. It uses fast and...
1.94 MB  
Log Analyzers  -  Log Mine 0.03
Log Mine is a tool that produces reports on usage patterns on your Web site. Web server log files are not just hit counters. They contain valuable information about the usage patterns of your website. Unforunately many web log analysis tools lay...
29.7 KB  
DNS Tools  -  dnshistory 1.3
dnshistory project provide a means for storing a history of DNS and Name changes for the IP Addresses extracted from web log files. The major target being that multiple analyses of older log files do not require re-lookups of IP Address to...
112.64 KB  
Libraries  -  Log::Localized 0.05
Log::Localized is a Perl module to localize your logging. SYNOPSIS What you most probably want to do is something like: package Foo; use Log::Localized; sub bar { # this message will be displayed if method bars verbosity is >= 1...
19.46 KB  
Log Analyzers  -  Wflogs 0.9.8
Wflogs is a firewall log analysis tool. It can be used to produce a log summary report in plain text, HTML and XML, or to monitor firewalling logs in real-time. This project is part of the WallFire project, but can be used independently. Usage...
747.52 KB  
NEW DOWNLOADS IN SERVER TOOLS, LOG ANALYZERS
Server Tools  -  GAdmin-OpenVPN-Server 0.1.6
GAdmin-OpenVPN-Server is an easy to use GTK+ client for the OpenVPN server in Bridge mode. A GUI for OpenVPN Multi-Client Server bridge. It can generate and use a total of 5 signed certificates and keys including...
245.76 KB  
Server Tools  -  Dual DHCP DNS Server 6.84
DHCP Server alots the IP addresses to computers, while DNS server resolves them. You need DHCP Server if you do not want to manually maintain IP Addresses or you have less IP Addresses than number of machines you have, as dynamic DHCP...
655.36 KB  
Server Tools  -  Localhost Indicator 0.0.1
Localhost Indicator is a simple and highly Ubuntu 10.04 integrated localhost web server indicator of Apache2 status, which takes advantages of the indicator-applet.
20.48 KB  
Server Tools  -  Open DHCP Server 1.45
DHCP Server Open Source Freeware. MultiSubnet DHCP Server supports Dynamic, Static Leases, Relay Agents, BOOTP, PXEBOOT, Options can be Global, Range Specific and Client Specific. Supports filtering of ranges on Mac Address, Vendor and User Class.
30.72 KB  
Server Tools  -  GAdmin-HTTPD 0.1.5
GAdminHTTPD project is an easy to use gtk+ user interface for the Apache HTTPD webserver. Featuring: Default server and multi-vhosting management. User management. Module management. Configuration imports and creations, manual editing,...
481.28 KB  
Log Analyzers  -  NewSyslog 1.1
NewSyslog is a highly configurable program for managing and archiving log files..
153.6 KB  
Log Analyzers  -  Xlogmaster 1.6.1
The Xlogmaster allows comfortable and fast control of the complete system status by offering an easy and comfortable way to process logfiles, status-giving devices or running programs to get a certain information. All output can be translated in...
686.08 KB  
Log Analyzers  -  pmacct 0.11.4
pmacct is a small set of passive network monitoring tools to measure, account and aggregate IPv4 and IPv6 traffic; aggregation revolves around the key concept of primitives (VLAN id, source and destination MAC addresses, hosts, networks, AS...
296.96 KB  
Log Analyzers  -  Kwatch 2.3.3
Kwatch is a graphical KDE 2.0 user interface for watching log files. This utility is a port of kwatch 0.3 by Ralph C. Weichert to KDE2/3. Basically it is a tail -f with a graphical KDE user interface for watching log files. Whats New in This...
70.66 KB  
Log Analyzers  -  BruteBlock 0.0.5
BruteBlock project allows system administrators to block various bruteforce attacks on UNIX services. The program analyzes system logs and adds attackers IP address into ipfw2 table effectively blocking them. Addresses are automatically removed...
23.55 KB