LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 02-03-2004, 07:35 PM   #1
whitetux
LQ Newbie
 
Registered: Feb 2004
Distribution: Gentoo, Red Hat, SuSE
Posts: 10

Rep: Reputation: 0
Question Which log prog should I use?


Hello, I will try to explain my question as best I can.

I am wondering what I should use to view the system logs. Not as in what command to view a system log but a prog that will consolidate and show me more security issues. Is Logcheck anygood? I would like to send the logs to another machine in real time incase of compromise, what is a good way to do this? Would like to send it to MS2k3 server.

I appreciate the help and will value any comments. Thanks.
 
Old 02-03-2004, 11:08 PM   #2
whitetux
LQ Newbie
 
Registered: Feb 2004
Distribution: Gentoo, Red Hat, SuSE
Posts: 10

Original Poster
Rep: Reputation: 0
bump
 
Old 02-04-2004, 04:13 AM   #3
enigmasoldier
Member
 
Registered: Jul 2003
Location: Florence, Ky
Distribution: CentOS 3.3-4, OpenBSD 3.3, Fedora Core 4, Ubuntu, Novell Open Enterprise Server
Posts: 213

Rep: Reputation: 30
Configure syslog to send the logs to the logserver. Run a program such as swatch on the log server to monitor for any sort of malicious behavior. Logcheck is a great program. Run it on your log server or you could get a copy of weblog to view your logs from a browser. Wouldn't it be nice if someone integrated the two together? This gives me some ideas. Make sure ALL of the passwords are different of the logging server and it is locked down. TrinityOS is an excellent tutorial on securing a generic linux host.
Links:
http://www.ecst.csuchico.edu/~dranch...html#trinityos
http://www.precision-guesswork.com/s...-overview.html
http://freshmeat.net/projects/wwwsyslog/?topic_id=862
http://www.linuxjournal.com/article.php?sid=5476
http://66.102.11.104/search?q=cache:...hl=en&ie=UTF-8
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
I want to start a prog from another prog but not as child grupoapunte Programming 5 05-23-2005 06:37 PM
[C prog] how to do this? dmigh Programming 7 10-31-2004 04:45 AM
finding data on removable media - is there a prog or a log? hobomsh Linux - Software 0 07-29-2004 10:06 PM
Which log prog should I use? whitetux Linux - Security 1 02-03-2004 08:21 PM
Better buying "advanced linux prog" or "unix advanced prog" Dominik Programming 3 12-31-2003 02:11 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 11:35 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration