OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: extracting smtp traffic from logs
From: Jim Seymour (jseymourLinxNet.com)
Date: Sat Apr 01 2000 - 07:37:28 CST

"Patrick O'Callaghan" <pocusb.ve> wrote:
>
> >>>>> "Len" == Len Conrad <lconradGo2France.com> writes:
>
[snip]
>
> It would be useful for debugging as well, ...
[snip]

After recently adding a firewall for one of my company's divisions (on
which I replaced what the original firewall had for a mail gateway with
Postfix), of course any time email wasn't delivered the first suspect
was my firewall. So on several occasions I found my self grep'ing
through the logs so I could report "such-and-such arrived from wherever
at and on this date & time and was delivered to wherever at and on this
other date & time." And in the normal course of operations the need to
do this has come up from time-to- time. (It's *never* my mail
servers. Ever.)

So I've had it in the back of my mind for some time to develop a
message tracker of some type. Something where one could enter any one
(or more?) of a particular criteria and emit a report that describes
the life of a particular item in question as it passed through a mail
server.

I already have much of the code I need in pflogsumm.pl. I'll give it
some thought as time allows.

Regards,
Jim 

-- 
Jim Seymour                  | PGP Public Key available at:
jseymourLinxNet.com         | http://www.cam.ac.uk.pgp.net/pgpnet/wwwkeys.html
http://home.msen.com/~jimsun | http://www.trustcenter.de/cgi-bin/SearchCert.cgi