[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] Watching logs?
- Subject: Re: [cobalt-security] Watching logs?
- From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
- Date: Fri, 22 Mar 2002 10:06:34 +0100
- Organization: Stauber Multimedia Design
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Hi Lan,
> I have a RaQ4i. What logs are best to check regularly for security
> reasons and how to go about doing so? I have monitored my httpd logs for
> quite some time by typing
> .
> tail -f /var/log/httpd/access
That's just the apache's access logfile where the web access is logged into.
There are other logfiles, which you might find more interesting:
/var/log/messages General system logfile
/var/log/maillog Logfile for email related issues
/var/log/kernel Logfile for kernel related issues
Many people like to use LogSentry (formerly known as Logcheck) from Psionic
Software (http://www.psionic.com/products/) which automatically scans your
logfiles and reports items of interest to you by email.
--
With best regards,
Michael Stauber
mstauber@xxxxxxxxxxxxxx
Unix/Linux Support Engineer