hi list -- i'm still procrastinating with the list move, but i'll be working on it tonight and tomorrow. in the meantime, i'm revising my log analysis class for the october SANS network security class (if you're in DC, take a look). i've found a great deal of information about the configuration of logging in BIND -- turns out that it duplicates a lot of syslog functionality: http://triton.process.com/bind-docs/logging.html there's also a pretty interesting discussion of how the logging works and some of the coding decisions from the BIND workers' mailing list: http://marc.theaimsgroup.com/?l=bind9-workers&m=102716068411351&w=2 if anyone out there has ideas about why there's so much duplication of functionality, i'd love to know! tbird "The road of excess leads to the palace of wisdom." William Blake, "Proverbs of Hell" http://www.shmoo.com/~tbird Log Analysis http://www.counterpane.com/log-analysis.html VPN http://vpn.shmoo.com --------------------------------------------------------------------- To unsubscribe, e-mail: loganalysis-unsubscribeat_private For additional commands, e-mail: loganalysis-helpat_private
This archive was generated by hypermail 2b30 : Tue Jul 23 2002 - 11:52:55 PDT