devialog

Release Notes: Bug fixes include better handling of lines with some special characters. A timing error was fixed within alert generation: sometimes alerts would be sent inadvertently based on the timing of a new log arriving as an alert was sent out in specific high-volume log situations. Altered signature generation creates more exact regular expressions.

Release Notes: Two new fields were added to signatures: comments and line. The comments field allows one to associate a comment with each signature. The line field enables the original syslog message in which the signature is based to be stored in the signature itself. A bug which would prevent non-standard syslog formats from being parsed was fixed. This enabled support for many more devices.

Release Notes: Mail queueing was enabled, so in the event that many anomalies appear, only one email is sent with multiple anomalies per default. A suggested signature logfile was added, in which devialog continuously (and optionally) writes suggested signatures during runtime to a pre-defined location. When combined with devialogsig, it's an easier way to add signatures. devialog requires the new version of the configuration file. Do not use the old configuration format, since there are far too many new options added.

No changes have been submitted for this release.