On Fri, Nov 16, 2001 at 02:30:30PM -0500, leon wrote: > > Hi, > > I am about to set up a sys-log server on a production network and I was > wondering if anyone had any suggestions as to why one OS might be better > then another (for example why someone would choose Debian over Redhat or > Solaris over BSD) . I would like to stick to Unix or Linux based OS's > if possible. > > Thanks in advance, > > Leon >
Hi Leon, I'm currently developing a log server install application called CRAFT (Centralized Repository Aiming Forensic Treatment), it aims to be an integrant part o SALinux (Security Aimed Linux), it has a client installer and server installer, it uses a encrypted tunnel for comunications (uses blowfish). The distribution will be released in a month or two, but any question regarding a log-server, you may address it to me, i'll answer to it :) Keep in mind that the machine must be closed for communication, except an ocasional sshd for remote access for the administrator (thing that i do not advise, a fisical access is preferred), and the tunnel port, also, filter options to prevent any possible DoS on the tunnel. Thanks, Marco Catarino
