"Fossies" - the Fresh Open Source Software Archive

Member "log_analysis-0.46/NEWS" (17 Apr 2012, 11325 Bytes) of package /linux/privat/old/log_analysis-0.46.tar.gz:


As a special service "Fossies" has tried to format the requested text file into HTML format (style: standard) with prefixed line numbers. Alternatively you can here view or download the uninterpreted source code file.

    1 
    2 See ChangeLog for the complete change list.
    3 
    4 Release 0.46 on 2012-04-17:
    5 
    6   Bug Fixes:
    7     - FIX: in gui mode, flags use_sprintf and delete_if_unique set to "1"
    8     - FIX: in gui mode, deleting a pattern does not dirty the config
    9     - FIX: in gui mode, selecting category dest corrupts value
   10     - FIX: help says -b takes an option, but it doesn't
   11     - FIX: regression bug in application ID
   12     - FIX: make sure all elements in pat are atomic i.e. in (?:...)
   13 
   14   New Features:
   15     - gui_mode_unknowns_pause_at: new option to pause at/after N unknowns
   16     - gui mode: restart shortcut: alt-r
   17     - gui mode: count of raw events processed and events per second
   18     - core: add -I all_configs to see all configs listed out
   19     - new built-in pat subpatterns: date_iso datetime_iso version 
   20     - new built-in pat subpatterns: non_whitespace oid
   21     - new built-in pat subpatterns: interface real
   22     - gui mode: status bar should show visible counter
   23     - add RCS files to filename_ignore_patterns, i.e. .*,v
   24     - gui mode: "show unknowns and matches" jumps to first match
   25     - gui mode: status bar should show knowns counter
   26     - add support for stripping recent Linux timestamps (Tim Meushaw)
   27     - config: nowarn and local should not be order dependent
   28     - gui mode: go to top, go to bottom, follow latest
   29 
   30   Miscellaneous pattern and config updates
   31 
   32 
   33 Release 0.45 on 2006-09-28:
   34 
   35   Bug Fixes:
   36     - FIX: Tk 804.027 says labelPack takes "-side", not "side"
   37     - FIX: Tk 804.027 doesn't validate dests correctly; validation changed
   38     - FIX: Tk 804.027 gives annoying warning about Tk::Pane
   39     - FIX: Tk 804.027 has wrong size for misc configurables
   40     - core: deal with hostname that ends in .localdomain
   41 
   42   New Features:
   43     - gui mode: find, clear find
   44     - gui mode: select by criteria
   45     - gui mode: status indication for total and unknown events
   46     - gui mode: help|about log_analysis
   47 
   48   Miscellaneous pattern and config updates
   49 
   50 Release 0.44 on 2006-09-20:
   51 
   52   INCOMPATIBLE CHANGES:
   53     - no more gui_mode_configuration_disabled or gui_mode_ignore_disabled
   54     - using the "gui_mode_config_savelocal" option will not recognize local
   55       modifications made from earlier versions of log_analysis.  Be careful!
   56 
   57   Bug fixes:
   58     - FIX: hang when a log starts with two LASTs (Dénes Ferenc Laborc)
   59     - FIX: perform variable substitution for preprocessor directives
   60     - FIX: @@warn and all other processor directives should obey @@if
   61     - FIX: gui mode: removing selected entries didn't update select count
   62     - FIX: pat{port} should require a minimum of one digit
   63 
   64   New features:
   65     - GUI pattern editing, complete with regex suggester.
   66     - delete_if_unique: can be used to reduce garbage during a scan.
   67     - various new report modes for loghost/logserver scenarios
   68       see: report_mode_combine_nodes, report_mode_combine_shows_nodes,
   69       report_mode_combine_is_partway
   70     - gui mode config save can save only "locally" changed items
   71     - gui mode config save can automatically check-in config to RCS
   72     - set nodename, osname, and osrelease from uname(2) instead of uname(1)
   73     - gui mode: select all, select unknowns, select knowns, unselect all
   74     - gui mode: hide selected, hide unselected, unhide all
   75     - gui mode: selection count and hidden count on status bar
   76     - gui mode: gui_mode_configure_disabled to prevent users from config changes
   77     - gui_mode_configure_deny_users gui_mode_configure_deny_groups
   78     - gui_mode_configure_allow_users gui_mode_configure_allow_groups
   79     - core: add support for "prepend var" and "prepend arr" (Ade Rixon)
   80     - remove Solaris 8+ msgids (Ade Rixon)
   81     - core: @ifos to test for OS name
   82     - core: add support for memory_size_command as part of footer
   83     - new pats: anything whitespace ssh_id
   84     - variables for suppress_footer and suppress_commands
   85     - deal with multi-line sendmail messages by including the first line
   86     - -I eval:$type
   87     - gui mode: pause button and pause menu item
   88     - core: "nowarn" in config to disable certain config warnings
   89 
   90   Miscellaneous pattern and config updates
   91 
   92 Release 0.43 on 2005-08-04:
   93 
   94   New features:
   95     - have -U print out unknowns as the script runs
   96     - new pats: hex, mac, mail_address
   97     - support for bz2-compressed files
   98 
   99   Miscellaneous pattern and config updates
  100 
  101 Release 0.42 on 2003-04-02:
  102 
  103   Incompatible changes:
  104     - dests may no longer contain backslash.
  105 
  106   Bug fixes:
  107     - FIX: other_host_message and derived categories were broken
  108     - FIX: perl 5.8.0 warning
  109     - FIX: multiple dests gives a warning
  110     - FIX: error rather than weird warning if unknown type for -t
  111     - FIX: daylight savings bug near midnight if -d cross daylight savings
  112     - FIX: gui mode: beep for second event
  113     - FIX: gui mode: "dest" should be saved last
  114     - FIX: gui mode: view event config sometimes causes a hang on exit
  115 
  116   New features:
  117     - action: keep_open
  118     - new internal logtype: plain
  119     - add scan detection to internal config
  120     - report_mode_output_node_per_category
  121     - real_mode_no_actions_unless_is_daemon
  122     - dest_delete: remove a dest from pattern
  123     - daemon mode, daemon_mode, daemon_mode_pid_file
  124     - daemon mode: daemon_mode_foreground
  125     - gui mode: autosave menu option under file
  126     - gui mode: resize buttons for hlists
  127     - gui mode: misc configurables: initial support
  128     - gui mode: misc configurables
  129     - gui mode: gui_mode_configuration_disabled
  130     - gui mode: gui_mode_ignore_disabled
  131     - gui_mode: gui_mode_event_config: configure selected event
  132     - gui mode: <Return> bound to default action
  133 
  134 Release 0.41 on 2002-04-08:
  135 
  136   Bug fixes:
  137     - FIX: days_ago doesn't always get loaded properly from config
  138     - FIX: remove a couple of perl5.6isms for 5.00503 support
  139     - FIX: corrupted patterns: pat{host}/g should be pat{host}
  140     - FIX: add var was acting like set var
  141     - FIX: real/gui mode: log lines not yet terminated by newline
  142     - FIX: real/gui mode: real mode doesn't handle compressed files right
  143     - FIX: real/gui mode: fseek/seek
  144     - FIX: gui mode: "nested" events aren't printed by print_event_tree
  145     - FIX: gui mode: deep recursion in gui mode
  146     - FIX: gui mode: dynamically grab GUI selections for print and save
  147     - FIX: gui mode: updates to count should have color
  148     - FIX: gui mode: alt-q exits with non-zero exit code
  149     - FIX: gui mode: -g -I evals dies early
  150 
  151   New features:
  152 
  153     - priority, ignore, ie:
  154       priority: IGNORE
  155     - event config, ie:
  156       event:
  157         match category: user logged in
  158         match data:     eviluser
  159         color: red
  160       event:
  161         match hostname: annoyingverbosehost
  162         priority: IGNORE
  163     - color, description, do_action, and priority also in dest, ie:
  164       pattern: user ($pat{user}) logged in
  165         color: red
  166         description: user logged in to the hostname indicated
  167         do_action: mail-admin
  168         priority: IGNORE
  169         format: $1
  170         dest: user logged in
  171     - -D: define preprocessor directives
  172     - -F: use minimal config
  173     - -i: suppress (most) default includes
  174     - -t: type force; type_force config variable
  175     - real/gui mode: keep_all_raw_logs to keep all raw logs in %A
  176     - real/gui mode: open_command_is_continuous: for tail -f, tcpdump, etc.
  177     - real/gui mode: make open_command and decompression_rules work
  178     - gui mode: view event config
  179     - gui mode: more ignore options
  180     - gui mode: savable user config
  181     - gui mode: no backlogs
  182     - gui mode: gui_mode_config_autosave, gui_mode_config_file
  183     - gui mode: select all
  184     - gui mode: gui filter support for print and save
  185     - gui mode: view raw logs
  186 
  187 Release 0.40 on 2002-03-25:
  188 
  189   Bug fixes:
  190 
  191   - FIX: gui mode sometimes dies with errors about seek
  192   - FIX: temp file is sometimes deleted before it's read
  193 
  194   New features:
  195 
  196   - real mode: do_action, to run an action (ie. page admin, mail admin) 
  197     when an event is seen
  198   - gui mode: print events (all or selected)
  199   - gui mode: save events (all or selected)
  200   - action: use_pipe, to send the event to the action on stdin
  201   - action: throttle, to not run an action (ie. page admin) more often 
  202     than specified
  203   - configurable pattern space $pat{name}, ie. $pat{ip}
  204   - gui mode: ignore (for now, just category + data)
  205   - gui mode: save selected events
  206   - all places where tag substitution occurs now support \n, \t, \\
  207 
  208 
  209 Release 0.39 on 2002-03-15:
  210 
  211   Bug fixes:
  212 
  213   - FIX: wtmp.gz stopped working
  214 
  215   New features:
  216 
  217   - -g for a primitive gui mode (requires Tk).
  218   - real mode color support
  219   - real_mode_output_format now takes %R for the raw log line
  220   - action config: action:, command:, window:, window_command
  221   - login config: default_login_action, login_action
  222   - -I actions, -I colors
  223 
  224 Release 0.38 on 2001-07-16:
  225 
  226   Incompatible changes:
  227 
  228   - date_format defaults to %Y_%m_%d
  229   - -o no longer also outputs to standard out.  Add -O for the old behavior.
  230   - config_version is now mandatory
  231 
  232   New features:
  233 
  234   - per-category config
  235   - output filters (per-category and default)
  236   - more sorting options (per-category and default)
  237   - derived category support
  238   - new "UNIQUE" pattern destination class
  239   - @@error and @@warn preprocessor directives
  240   - filename_ignore_patterns: patterns of filenames to ignore when 
  241     including dirs
  242   - allow simple days-ago in a range (ie. -d7-1 for last week's logs).
  243 
  244 
  245 Release 0.37 on 2002-06-29:
  246 
  247   Incompatible changes:
  248 
  249   - the new default sort is "funky".  This takes somewhat longer for
  250     large data sets, but it handles numbers and IPs much better.
  251   - "end" has been replaced with "@@end" (because of the preprocessor.)
  252 
  253   New features:
  254 
  255   - -r: real mode: continuous, tail -f style output
  256   - real mode log rollover detection
  257   - new variables real_mode_sleep_interval, real_mode_check_interval
  258   - funky sort: sort numbers separately to handle IP address better
  259   - new global variable: default_sort.  Can be set to string, funky, 
  260     or numeric, defaults to funky
  261   - real_output_format: new global for the output in real_mode
  262   - field widths (optional) for tags (ie. %10n, %-10n)
  263   - preprocessor directives a la aide: @@define, @@undef, @@ifdef, 
  264     @@ifndef, @@ifhost, @@else, @@endif, @@ifhost, @@{VAR}
  265   - implement and allow: -d range with -a
  266   - new required config variable: output_message_all_days_in_range
  267   - -I patterns
  268   - -I help
  269   - -I log_types
  270 
  271 
  272 Release 0.36 on 2001-03-15:
  273 
  274   Incompatible changes:
  275   - change -F to -I internal_config
  276   - change -D to -I evals
  277 
  278   Bug fixes:
  279   - FIX: syslog server with exactly one logging host and none of its
  280     own log messages doesn't get noticed as multiple hosts
  281   - FIX: 3rd field in raw_rules defined as false should not be an error
  282 
  283   New features:
  284   - -I log_files: show actual log files to be parsed
  285   - -I config_versions
  286   - file_version: declares the file version for config files
  287   - support for a range of days, ie. -d 2001_02_01-2001_02_28
  288   - -I categories: list all categories (ie. from configs and implicit)
  289   - pipe_decompress_to_open: don't use a tempfile
  290   - domain: allow either manual setting, or use /etc/resolv.conf domain
  291   - localize hostnames/nodenames relative to domain
  292   - leave_FQDNs_alone: don't localize hostnames/nodenames
  293   - Support for -d as absolute date, ie. 2001_03_02
  294 
  295 For older News, see the Changelog.