agentsmith is a daemon that continuously monitors a log file for break-in attempts by remote hosts. Upon detection of a break-in attempt, it launches a user defined script or application, which can do virtually anything from sending mail messages to whatever else you might think of. The criteria for what is considered a break-in attempt can be configured by means of a regular expression.
|Tags||SysAdmin Log Monitor Security|
|Operating Systems||Solaris OpenSolaris FreeBSD OpenBSD Linux NetBSD|