On 12/17/2011 10:26 PM, Linda McLeod wrote:
Quoting: "Or you could just set up syslog to use a remote server."
__________________
Isn't allowing any remote server stuff, the user compromising
security..?
No. You can have a remote syslog server behind yet another firewall
that ONLY lets syslog through. Syslog is a UDP protocol and you really
cannot attack a system over the syslog port. So the syslog server can
be very secure. You can open port 25 outbound from this firewalled LAN
so the syslog server can mail the logs to your admin server. You would
probably have to open IDENT inbound or configure the mail server NOT to
IDENT the syslog server (can be done).
This DOES take a system dedicated to sysloging. In large datacenters,
this is the norm.
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
