Log checking

[Techno-Fox]

Perceived idea awesomeness

• Wow, you don't have this yet???
• Would be super cool.
• I'm not sure a lot of people would use it, but I'd love to have it.
• Kind of a gadget, honestly, but why not?

Perceived idea difficulty

• Quit your job first.
• Would need some work, but nothing impossible.
• Shouldn't be too hard to make.
• Like, I could do it.

---

(Write your idea or feature request here)

Every sysadmin has one thing they should check every now and then. That's the LOGS! The logs show us what users have been doing, if there's been an intrusion and where, etc. For linux there's the famous /var/log/auth.log. This shows failed logon attempts from local system, ssh, etc. That can be used to detect bruteforce attempts (Personally ran an ssh server, had a lot of bruteforce attempts from china for some reason). Snort can detect malicious traffic, portscans, signitures, etc (snort is amazing for sysadmins).

Point is. Can we have a log checking system? Maybe pop an alert if bruteforce has been detected? Im just throwing ideas here.