Language Selection

English French German Italian Portuguese Spanish

Configure Local and Remote System Logging : Ubuntu

Filed under
HowTos

A linux machine has a logging system which keeps track of what everything is doing. Anytime you authorize with sudo it gets logged. Anytime you (or someone else) connects via ssh it gets logged. Apache logs connections, mail servers log emails sent and refused. Pretty much everything keeps a log of what it is doing so you can later troubleshoot it or simply have a record of it.For those that are security minded it may not be a bad idea to keep duplicate of your logs by sending them not only to the local machine but to a remote machine as well. This way, even if an attacker is able to get into the first machine his steps are logged remotely before he is able to clear them on the local machine. This, of course, has a number of other valuable uses. In any event, here are a few quick steps to set it up.

/etc/syslog.conf

This file is the main “what gets logged and where” file for your system. If you take a look at it you’ll see that it takes different types of logs and writes them to the appropriate files. Mail here. Cron there. etc. We can easily tell the system to send the logs elsewhere with the following:

More Here.




More in Tux Machines

I/O-rich SBC runs Linux on Cortex-A9 Sitara SoC

MYIR launched a “Rico” SBC for TI’s Cortex-A9 AM437x SoC, with an open Linux BSP, 4GB of eMMC flash, and coastline GbE, HDMI, and USB host and device ports. Read more

ChaletOS Is a Design Tweak in the Linux House

ChaletOS Linux is one of the closest Windows 7 clone interfaces I have seen. Its refreshing design makes it a good choice for transitioning to the Linux OS. Read more

​Red Hat buys into Docker containers with Atomic Host

Not much over a year ago, few people knew about containers, and fewer still knew about Docker. Since then, the idea of building server and applications out of container-based micro-servers, has exploded in popularity. Red Hat has been watching this and now with Red Hat Enterprise Linux 7 Atomic Host (RHELAH) the company has its own operating system/container pairing to offer the business world. Read more

VMware heads to court over GPL violations

The Software Freedom Conservancy alleges that VMware is using GPL-licensed code in its proprietary products Read more