Java Forum

Ask Question   UnAnswered
Home » Forum » Java       RSS Feeds

Looking for a log analyzer

  Asked By: Jaxson    Date: Jun 15    Category: Java    Views: 1339

I'm looking for a J2EE based log analyzer, witch must analyze all the
logs in the system and compare them with some predefined rules and if
they match do some tasks.

A very very simple sample of this analyzer may be that more than 3
unsuccessful attempts for login, results in blocking the user.
In this situation 3 unsuccessful attempts and blocking the user are
some predefined rules.



3 Answers Found

Answer #1    Answered By: Eline Bakker     Answered On: Jun 15

If you want to associate a task to rules  , a log  analyser is not what you need.

logs are stored once an action is already done and its only purpose if to keep a history of system  behaviour. what you need is a rule engine. you might want to have a look at OCL and see how the ruls can be associated to objects. now to stay with your example, if an object is monitoring the state of login  attempts to the system, an OCL rule can trigger an action IF the number of attempts reaches to 3. the rule then is on your monitoring object.

I don't think looking at logs is a correct way to do it. one good reason for that is, information are logged in different levels, i.e. INFO, WARNING, DEBUG, TRACE, etc and these levels are customizable, now if the application user  sets the logging level to a certain value which doesnot include system log attempt, the analyser will be useless.

for example if log attempts are going to be logged when log level is WARNING and user set the log level to INFO, analyser will never notice the number of log attempts.

look into rules / rule engines and monitoring the tasks instead of log analyser. you are mixing two different things

Answer #2    Answered By: Harriet Hughes     Answered On: Jun 15

Thank you for your useful comment.
You are right we have to manage it in another way.

Answer #3    Answered By: Blandina Garcia     Answered On: Jun 15

this book may help:
Security Log
Identifying Patterns in the Chaos
ISBN: 1-59749-042-3

I have downloaded electronic version from internet, if you can't found it, ask me to send you a copy.

Didn't find what you were looking for? Find more on Looking for a log analyzer Or get search suggestion and latest updates.