Security Basics mailing list archives

Re: syslog server- how to on Linux

From: Valter Santos <vsantola () devfusion net>
Date: 14 Dec 2002 01:56:19 +0000

Hi,

first of all: we all have a time to learn ;)

Syslog comes with linux by default, it's up and running when you first
start your system.

 What is the method to viewing logs on Linux?


you have a bunch of log files in /var/log... your syslog file is
/var/log/syslog (in SuSE is /var/log/messages)... 

To view it on your console try to tail it:

tail -f /var/log/messages

(do a man tail to learn all options of the tail command).

 My first project is to set it up as a syslog security server.

I suppose you want a remote syslog server... 
Mmmm... this one is a cool article on how to setup a remote log server:

http://www.linuxsecurity.com/feature_stories/remote_logserver-1.html

Hope this help
/valter



On Fri, 2002-12-13 at 20:34, netsec novice wrote:

I'm hoping I don't generate flames because this is somewhat off-topic but I 
have been googling for a while and I'm not getting the answer I'm looking 
for.  I need information on how I view or set up syslog on a Linux platform 
(specifically SuSE 8.1)  I am BRAND new to Linux and purchased SuSE to force 
myself to learn.  My first project is to set it up as a syslog security 
server.  Yes - I have also done man syslog.  I am familiar with syslog 
servers (Kiwi) in the windows environment.  What is the method to viewing 
logs on Linux?  Typing syslogd at the command line tells me that syslogd is 
already running but I don't see it listening as a service when I type 
netstat -an.  Any help is appreciated... a direction for information if you 
just think I'm an idiot is fine too.
thanks
N

_________________________________________________________________
MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*. 
http://join.msn.com/?page=features/virus

-- 

---..---..---..---..---..---..---..---..---..---..---..---..----
Valter Santos

vsantola () devfusion net                         |||
http://devfusion.net/~vsantola/keys/          (@ @)                 
------------------------------------------oOO--(_)--OOo---------

Attachment: signature.asc
Description: This is a digitally signed message part

Current thread:

syslog server- how to on Linux netsec novice (Dec 13)
- Re: syslog server- how to on Linux Julian Plamann (Dec 16)
- Re: syslog server- how to on Linux Valter Santos (Dec 16)
- Re: syslog server- how to on Linux Devdas Bhagat (Dec 16)
- RE: syslog server- how to on Linux Rick Darsey (Dec 16)
- RE: syslog server- how to on Linux Xander Soldaat (Dec 16)
- Re: syslog server- how to on Linux Kristian Fiskerstrand (Dec 16)
- Re: syslog server- how to on Linux mlh (Dec 16)
- Re: syslog server- how to on Linux Daniel Heemann (Dec 16)
- Re: syslog server- how to on Linux Nuno Branco (Dec 16)
- RE: syslog server- how to on Linux Jason Burzenski (Dec 16)
  - Re: syslog server- how to on Linux James-lists (Dec 17)
- Re: syslog server- how to on Linux easy (Dec 17)

(Thread continues...)