Log Event Correlation: using 'ESPER' opensource for this purpose.
integrate GELF (Graylog Extended Log Format) as a broker module like the syslog or simple_log module Info: Graylog Extended Log Format The Graylog Extended Log Format (GELF) avoids the shortcomings of classic syslog. It is perfect for sending log messages from within your applications in an easy and structured way. There are libraries and log appenders for Ruby, PHP, Python, Perl/Log4Perl, Java/Log4j (gelf4j, gelfj), ...more »
I suggest you implement an audit log for all webUI events of interest:
- configuration changes
- comments created
This would be in addition to the Shinken general logs.
This is a complete replacement for Nagios GUI
It is much more event-oriented, which Nagios lacks.
It includes perfdata graphing
this should be no big deal