Date: Sun, 18 Feb 2001 13:22:55 -0500 From: Brian Reichert <reichert@numachi.com> To: Ragnar Beer <rbeer@uni-goettingen.de> Cc: freebsd-security@freebsd.org Subject: Re: Remote logging Message-ID: <20010218132255.L91352@numachi.com> In-Reply-To: <p04330104b6b573740812@[192.168.0.98]>; from rbeer@uni-goettingen.de on Sun, Feb 18, 2001 at 01:46:36PM %2B0100 References: <p04330104b6b573740812@[192.168.0.98]>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Feb 18, 2001 at 01:46:36PM +0100, Ragnar Beer wrote: > Howdy! > > I remember reading about remote logging as a more secure alternative > to setting sappnd flags. Can anybody confirm that and could you point > me to a howto or so about how it can be done? What? Syslog? Set up a secured box, with syslogd: loghost# syslogd -a 192.186/16 Have this machine configured to write many machines' logs into whatever scheme you find useful for analysis. Have your other boxes have syslogd configured with something as simple as: *.* @loghost There are additional steps you can take to keep syslogd immune from DNS outages; read the manpages. Make sure all fo your boxes are syncroninzed via NTP. > > Ragnar > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > -- Brian 'you Bastard' Reichert <reichert@numachi.com> 37 Crystal Ave. #303 Daytime number: (603) 434-6842 Derry NH 03038-1713 USA Intel architecture: the left-hand path To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010218132255.L91352>