this is for the client side, don't forget to edit syslog
vi /etc/rc.d/init.d/syslog
in the line
daemon syslogd -m 0
change it to
daemon syslogd -r -m 0
then restart your syslog for both the client and syslog server
On Wed, 9 May 2001, fooler wrote:
> Fritz Mesedilla wrote:
>
> > uh, thanks for the advices.
> >
> > what i really need is how to configure the server for remote logging.
>
> hi fritz,
>
> on your syslog server inside /etc/syslog.conf
>
> facility.level /path/logfile
>
>
> for every remote host inside your /etc/syslog.conf
>
> facility.level @ip_address_of_your_syslog_server
>
> aside from securing your log files, i cant teach you (confidential :->) how to
>make your syslog server becoming a
> stealth server... meaning it cannot ping, traceroute, fingerprinting nor port scan
>by an attacker or what i mean is
> that, it doesnt exist that there is a syslog server on your network from the public
>network point of view but im still
> using a public ip address for my syslog server and all remote host is logging their
>logs to my syslog server without
> using any complex tools nor design. :->
>
> fooler.
>
> _
> Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
> To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
>
> To subscribe to the Linux Newbies' List: send "subscribe" in the body to
>[EMAIL PROTECTED]
>
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
