Top White Papers
Building A Central Loghost On CentOS And RHEL 5 With rsyslogJan 19, 2011, 20:34 (1 Talkback[s])
[ Thanks to Falko Timme for this link. ]
"Gathering log messages is important. In a lot of situations you'll want to store all entries of logfiles on another server. If a server crashes or gets hacked you want to be able to browse through logfiles from this machine and you want to be sure these log files are not altered in any way. This can be accomplished using a central logserver that receives messages from all other hosts. A syslog facility can receive messages from UNIX and Linux hosts but also network devices and certainly Windows hosts. Such a syslog host should make these logfiles available to auditors and sysops using a read-only interface or they should not be available to anyone until an incident occurs.
0 Talkback[s] (click to add your comment)