2009/4/14 LeRoy, Ted <tle...@lsisolutions.com>
> Hello folks,
>
> I'm pretty new to OpenBSD and BSD in general, but I have an OpenBSD
> Syslog server up and receiving data. I'd like to have the system be
> pretty secure, and I'd like to monitor its security via a simple script
> that runs daily.
>
> Here's what I have in the script at the present time:
>
> { uptime ; date ; who ; ps -al ; cat /var/log/adduser ; cat
> /var/log/authlog ; cat /var/log/messages ; cat /var/log/secure ; cat
> /var/log/router ; } > daily-log.txt
>
Not necessarily the advice you are after, but- Sometimes less is more.
Unless you are fortunate to have enough free time to review all of that data
on a daily basis and spot the changes of relevance, then human nature
dictates that you will overlook the important parts, should they eventually
arrive.
Regards,
