Syslog over SSH
From: Rafael Vidal Aroca (rafael@3wt.com.br)Date: 11/29/01
- Previous message: Skip Carter: "Re: user selection for ssh connections"
- Next in thread: Jose Nazario: "Re: Syslog over SSH"
- Reply: Jose Nazario: "Re: Syslog over SSH"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 29 Nov 2001 09:50:53 -0200 (BRST) From: Rafael Vidal Aroca <rafael@3wt.com.br> To: <focus-linux@securityfocus.com> Subject: Syslog over SSH Message-ID: <Pine.LNX.4.33.0111290947160.1126-100000@osiris.gds>
Well, this is an answer and a question.
What I do to do secure logging on remote machines is pipe UDP/514
(syslog) to TCP using netcat then pass it to another machine over a SSH
tunnel, and put it to localhost.
Like that:
On logging server:
nc -l -p 9999 | nc localhost -u syslog
ssh -g -R 9999:localhost:9999 root@remoteServer
On the machine we want to log:
nc -l -u -p syslog | nc localhost 9999
I do this and remote logging works, but is it a good way of doing
that?
-- []s Rafael. 3wt - Wireless Web World Technologies A Division of GDS Corporation
- Previous message: Skip Carter: "Re: user selection for ssh connections"
- Next in thread: Jose Nazario: "Re: Syslog over SSH"
- Reply: Jose Nazario: "Re: Syslog over SSH"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
