[unisog] Syslog tips (was: Re: OSS monitoring

J. Oquendo sil at infiltrated.net
Mon Oct 3 15:05:50 GMT 2005


On Mon, 3 Oct 2005, Michael Holstein wrote:

> Lets you see the hits in realtime versus waiting for the buffer to fill
> on the standard 'grep' utility. It's also a lot faster when doing a
> massive search (eg: cat firewall.log.*.bz2 |bunzip2 - |foo) -- but it'll
> be a cpu hog both for bunzip2 and perl (your loghost is SMP >2, right?).

Why not just use gzgrep and alleviate program|piped to|program bulkiness

=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+
J. Oquendo
GPG Key ID 0x97B43D89
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x97B43D89

"Just one more time for the sake of sanity tell me why
 explain the gravity that drove you to this..." Assemblage


More information about the unisog mailing list