From owner-freebsd-security Wed Apr 5 11:19:48 2000 Delivered-To: freebsd-security@freebsd.org Received: from turing.csis.gvsu.edu (csis.gvsu.edu [148.61.162.182]) by hub.freebsd.org (Postfix) with SMTP id F399937B99E for ; Wed, 5 Apr 2000 11:19:45 -0700 (PDT) (envelope-from matt@csis.gvsu.edu) Received: (qmail 7684 invoked by uid 0); 5 Apr 2000 18:19:40 -0000 Received: from eos16.csis.gvsu.edu (matt@148.61.162.116) by turing.csis.gvsu.edu with QMQP; 5 Apr 2000 18:19:40 -0000 From: matt@csis.gvsu.edu Date: Wed, 5 Apr 2000 14:19:40 -0400 To: Andre Gironda Cc: goten@linux.sduteam.com, security@freebsd.org Subject: Re: Queston on secure syslogd Message-ID: <20000405141940.A6357@eos16.csis.gvsu.edu> References: <20000405111051.A3830@toaster.sun4c.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.5i In-Reply-To: <20000405111051.A3830@toaster.sun4c.net>; from Andre Gironda on Wed, Apr 05, 2000 at 11:10:51AM -0700 X-my-OS-is-better-than-your-OS: Linux 2.2.5-22 i686 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Over the Internet, I'd be more likely to use scp, rsync, or CVSup > even though I should probably use something better like IPSec or SNMPv3. Things like scp that copy files won't deliver messages in (pseudo) real-time. I don't know if this is a priority for the original poster. The simplest solution is to use a syslogd that delivers over TCP and send messages through an ssh tunnel. btw, have you tried syslog-ng? http://www.balabit.hu/products/syslog-ng/index.html -- http://www.csis.gvsu.edu/matt 03 F8 23 C5 43 A2 F7 5A 24 49 F7 B0 3A F9 B1 7F Try to understand everything, but believe nothing To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message