[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Watching logs?

Subject: Re: [cobalt-security] Watching logs?
From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
Date: Fri, 22 Mar 2002 10:06:34 +0100
Organization: Stauber Multimedia Design
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hi Lan,

> I have a RaQ4i. What logs are best to check regularly for security
> reasons and how to go about doing so? I have monitored my httpd logs for
> quite some time by typing
> .
> tail -f /var/log/httpd/access

That's just the apache's access logfile where the web access is logged into. 
There are other logfiles, which you might find more interesting:

/var/log/messages		General system logfile
/var/log/maillog			Logfile for email related issues
/var/log/kernel			Logfile for kernel related issues

Many people like to use LogSentry (formerly known as Logcheck) from Psionic 
Software (http://www.psionic.com/products/) which automatically scans your 
logfiles and reports items of interest to you by email.

-- 

With best regards,

Michael Stauber
mstauber@xxxxxxxxxxxxxx
Unix/Linux Support Engineer

References:
- [cobalt-security] Watching logs?
  - From: Lan Duong

Prev by Date: Re: [cobalt-security] Re: New kernel
Next by Date: Re: [cobalt-security] Re: lack of SUN's security patches
Previous by thread: [cobalt-security] Watching logs?
Next by thread: [cobalt-security] RaQ patching and security

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index