First of all, I'd like to thank Amine Moulay Ramdane, who programmed the AdvNotify PPM package. AdvNotify provides the functions needed to monitor directories and report when changes are made to these directories. LogAgent 1.0 was created in september 2000. At the time, I had written a paper about antivirus protection and deployment in an enterprise network, and one of the topics covered in this paper was the benefits from the centralization of the antivirus logfiles on the network. As I played with other antivirus products and some personnal firewalls, I found out that some of them had their log file destination path hardcoded in the software, making it impossible to choose a different location, and thus preventing the centralization of log files scattered around on a network.
The original paper of LogAgent 1.0 was presented at the Seguridad en Computo conference in Mexico City in November 2000. Back then, it was a simple script that I now consider to be "proof of concept" code, but not quite ready to handle the job in the real world. Version 2.0 beta was released in April 2002, which was a big improvement over the previous version. It allowed for more flexible configuration and was cleaner and more structured code. Version 2.1 fixed the design flaw that caused log lines to be dropped when changes were quicker than what LogAgent could keep track of.
1. What is LogAgent?
3. Version History
Table of contents