You know, as I sift through these and determine which ones I should keep and which I should delete, the thought occurred to me that now would be a wonderful time to create a quick and dirty FAQ and post it here every 2 weeks or so. Just to keep us from having to answer common questions such as "what do you use for syslogging?" and "anyone have any good packages that run on NT?" Just my .02 Cents Ron Russell ----- Original Message ----- From: "Katsuhiro Kondou" <kondouat_private> To: <loganalysisat_private> Sent: Sunday, August 12, 2001 8:37 AM Subject: Re: Central syslog server best practices? > In article <3B74F5B5.9D071D2Dat_private>, > Marlys A Nelson <marlys.a.nelsonat_private> wrote; > > } able to be changed in case of a host compromise. Recently, the log > } traffic from our firewall (linux running ipchains) has been so heavy > } that the syslog server has been losing data. > > Doesn't syslog thru tcp help? It's possible with > syslog-ng, though I've never used. > -- > Katsuhiro Kondou > > --------------------------------------------------------------------- > To unsubscribe, e-mail: loganalysis-unsubscribeat_private > For additional commands, e-mail: loganalysis-helpat_private > --------------------------------------------------------------------- To unsubscribe, e-mail: loganalysis-unsubscribeat_private For additional commands, e-mail: loganalysis-helpat_private
This archive was generated by hypermail 2b30 : Mon Aug 13 2001 - 15:06:18 PDT