Mining Syslog

CERIAS Security: Towards Mining Syslog Data

Syslog is the primary source of information about intrusion-related activity on a Unix system.