Here are some notes about Splunk ( www.splunk.com ) usage. All the relevant documentation is here.
Rsyslog is now de facto the syslog engine for Ubuntu (since 10.10). I used syslog-ng for long but know I need to update my knowledge.
Top Log Report Candidate You like this . Then go directly to the source page : http://chuvakin.blogspot.com/2010/07/sans-top-5-essential-log-reports-update.html
Octopussy – Perl/XML Logs Analyzer, Alerter & Reporter. – http://www.8pussy.org/ This post is OBSOLETE and the Octo(8)pussy project is not maintained anymore.