XML should be used in the same way as brute force. If it still doesn't help or work out, you simply should use more of it.
I like Daniel Bernstein's
multilog, which gives finer grained timestamps and does more effort not to lose log info.
BTW did you see
http://linux.slashdot.org/comments.p...6&cid=38152602 ?
Quote:
Signing log messages does not need to be complicated or incompatible with current text-based logging. Hashing messages is incredibly easy to do, and there's really no reason not to do it. I just implemented this in python in less than two minutes.
>>> from hashlib import md5
>>> log = lambda last_message, message: "{}: {}".format( md5(last_message).hexdigest(), message)
The output hashes the last message with the current message:
8a023b9cbebe055e4b080585ccba3246: [ 19.609619] userif-2: sent link up event.
649a2719064f7f276462464527b48a69: [ 29.680009] eth0: no IPv6 routers present
No binaries, still grepable, single host and most importantly, there is now a trail that can be verified.
|