RE: WinNT event viewer --> syslogdFrom: leon (firstname.lastname@example.org)
- Previous message: leon: "RE: WinME-Port 5000 Socket23 - Trojan??"
- In reply to: Gerry: "WinNT event viewer --> syslogd"
- Next in thread: Dustin Puryear: "Re: WinNT event viewer --> syslogd"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "leon" <email@example.com> To: "'Gerry'" <firstname.lastname@example.org> Subject: RE: WinNT event viewer --> syslogd Date: Thu, 13 Sep 2001 18:04:26 -0400 Message-ID: <!~!UENERkVCMDkAAQACAAAAAAAAAAAAAAAAABgAAAAAAAAA+8DoZCJ8SEaYk5pn4rrIf8KAAAAQAAAA8lCrGPIZNUiGHf4Xx8GqGAEAAAAA@inyc.com>
There was a thread about this on Focus-MS and there was an article about
this on securityfocus. I am not sure if their backend database is back
up yet but I am sure when they come back up you will be able to find
both the thread and the article.
From: Gerry [mailto:email@example.com]
Sent: Tuesday, September 11, 2001 8:33 AM
To: security basics
Subject: WinNT event viewer --> syslogd
I have a basic question regarding the WinNT 4.0 event viewer.
We have a couple of Linux systems here in our site which run the syslogd
and have their logs checked automatically and reported any odds per
email. I also have some WinNT 4.0 WS acting as backup/file servers
sitting in a corner pretty unattended. Now I want them to report their
event messages (like security vialotions ...) which go normally to the
event viewer to one of my syslogd's on a linux system to be checked
automatically as well. As far as I found out there is no feature in NT
to do that.
Is it possible to implement at all, has anybody experience with that?
Is there any additional SW necessary? (any source, freeware, comercial
I basically just want to avoid having to walk over to check them
manually which is most of the time very unfrequent.
Thanks in advance for your help,