• Syslog-ng is the platform. Central log server

http://www.loganalysis.org/

Tina Bird runs a loganalysis list

Swatch sec.pl - simple event correlator lets you watch for and act on combinations of events

splunk - a search tool, the google approach to logs, rather than trimming and wading through

logwatch

logsentry