Hi I have a small VPS. That runs some websites and some IRC. I'm looking for a program that can scan my log files and send me mail with the latest log after some days The program that sends the latest log to my mail, has to know what log it have sent before, so I don't receive the same log twice I have tried to use logcheck but it keeps sending the same log twice Any idea what program can do this? BTW: I also use logrotate // Thomas
Logwatch. Probably available from your distro repository. Google for config that will email you daily summaries. Excellent for spotting when ClamAV goes AWOL and the latest Wordpress plugin exploits.
you still have to look through all the logs though. maybe go the other way, although it might be a bit much for such a simple use case, but you could try the ELK stack. elasticsearch, logstash, and kibana, maybe even add suricata or zeek IDS to it. have you entire log history, searchable and filterable by any metric, level, keyword you want. updated live. just search for ELK or elasticsearch in the tutorials on this site for various install guides. certainly more useful if you have multiple servers and you don't want to spend all your time running through the logs for them all.
