On 12/17/2011 10:26 PM, Linda McLeod wrote:
Quoting: "Or you could just set up syslog to use a remote server." __________________ Isn't allowing any remote server stuff, the user compromising security..?
No. You can have a remote syslog server behind yet another firewall that ONLY lets syslog through. Syslog is a UDP protocol and you really cannot attack a system over the syslog port. So the syslog server can be very secure. You can open port 25 outbound from this firewalled LAN so the syslog server can mail the logs to your admin server. You would probably have to open IDENT inbound or configure the mail server NOT to IDENT the syslog server (can be done).
This DOES take a system dedicated to sysloging. In large datacenters, this is the norm.
-- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines Have a question? Ask away: http://ask.fedoraproject.org
