Security Basics mailing list archives

Re: Syslog over Internet

From: Valter Santos <vsantola () devfusion net>
Date: 20 Aug 2003 15:16:08 +0100

On Mon, 2003-08-18 at 15:59, Vineet Mehta wrote:

I have hired a server located in a different country. I heard that its
better to log all your syslog messages on a different machine. As i dont
have access to any other machine on that network except in my own
country.

My question is how safe and efficient it is to log Syslogd messages from
my server in other country to my server in this country?

Is it really safe? is it adviced to do so, of not then why?



Grrr... That kind of solution don't seems to be very secure IMHO, since
syslog messages will say a lot about your system to any sniffer around.

I will suggest that you configure an ipsec tunnel (VPN) between the two
networks and then pass syslog traffic in the tunnel.

A good start point to learn how to configure a VPN is the FreeS/Wan
project homepage: http://www.freeswan.org/.


have fun
/valter


-- 

---..---..---..---..---..---..---..---..---..---..---..---..----
Valter Santos
keys      @ http://devfusion.net/~vsantola/
E2A4B206  @ 99FA 3D80 4B54 BA70 7DD7 C751 47BA 49BC E2A4 B206
---------------------------------------------------------------

Attachment: signature.asc
Description: This is a digitally signed message part

Current thread:

Syslog over Internet Vineet Mehta (Aug 18)
- RE: Syslog over Internet David Gillett (Aug 18)
- Re: Syslog over Internet Damian Menscher (Aug 18)
  - Re: Syslog over Internet Arturo "Buanzo" Busleiman (Aug 18)
  - RE: Syslog over Internet matt willson (Aug 20)
- Re: Syslog over Internet Valter Santos (Aug 20)
- <Possible follow-ups>
- RE: Syslog over Internet Keith T. Morgan (Aug 18)
- RE: Syslog over Internet DeGennaro, Gregory (Aug 18)
- RE: Syslog over Internet DeGennaro, Gregory (Aug 19)
  - Re: Syslog over Internet Eric Nelson (Aug 20)