Hi<br><br>I am using rsyslog to get logs to a central box and they are stored in the format of<br><br>/<hostname>/<year>/<month>/<day>/<logfilename><br><br>I need a solution that can trawl through these directories and pick up exceptions like failed logons and sudo usage that sort of thing.<br>
<br>Has anyone got any clues as to what might help to achieve this, i am looking into logsurfer but not sure if this handles the directory structure nicely.<br><br>thanks for any tips<br>