[unisog] Syslog tips (was: Re: OSS monitoring

J. Oquendo sil at infiltrated.net
Mon Oct 3 15:05:50 GMT 2005

On Mon, 3 Oct 2005, Michael Holstein wrote:

> Lets you see the hits in realtime versus waiting for the buffer to fill
> on the standard 'grep' utility. It's also a lot faster when doing a
> massive search (eg: cat firewall.log.*.bz2 |bunzip2 - |foo) -- but it'll
> be a cpu hog both for bunzip2 and perl (your loghost is SMP >2, right?).

Why not just use gzgrep and alleviate program|piped to|program bulkiness

J. Oquendo
GPG Key ID 0x97B43D89

"Just one more time for the sake of sanity tell me why
 explain the gravity that drove you to this..." Assemblage

More information about the unisog mailing list