System message logger with pattern database
Version 3.1 of BalaBit's syslog-ng system message logger is now available. Both the open source and premium editions include a new extended pattern database which already contains 8,000 entries and can be used to identify 200 different applications. It is possible to add further entries to the database. Also new is the ability to tag incoming system messages to speed up searching and aid filtering. The development team has beefed up support for Perl-compatible regular expressions (PCRE) in syslog-ng 3.1.
The premium edition is available pre-compiled for Solaris 9 on x86, Tru64 5.1b on Alpha, HP-UX 11v2 on Itanium64 and for older Linux systems, such as RedHat Enterprise Linux 2 and Debian Potato on x86 and RedHat Enterprise Linux 3 and Debian sarge (32/64Bit). The program compiles statistics in which log messages can be evaluated by server host, destination, pattern database classes and rules or tags. Encryption and hashing can also be set up separately for each storage location. The open source version under the GPL2 license is available to download from the development website for various Linux and FreeBSD versions. Licensing and pricing for the premium edition is based on the number of log sources. Five log sources cost €458.15, 100 will cost €6,682.