RE: Logging dhcpd leases strategies

["Rafael Torrales Levaggi" <rtorrales () novared cl>]

Hi

You can configure de data who syslog could send to you, so maybe you should preview what kind of analysis are you going 
to do with that data.

Anyway, rsyslog is a great way to send data to your mysql db.



Rafael Torrales Levaggi
Analista de Seguridad
Teléfono: (56-2) 499-9090 | Fax: (56-2) 203-3180
e-mail: rtorrales () novared cl   
-----Mensaje original-----
De: listbounce () securityfocus com [mailto:listbounce () securityfocus com] En nombre de secrookie () gmail com
Enviado el: Wednesday, March 18, 2009 2:32 AM
Para: security-basics () securityfocus com
Asunto: Logging dhcpd leases strategies

Which approach would you use to log dhcpd leases in mysql?

Currently we are considering either parsing the dhcpd.leases~ database
file or enabling syslog.   Enabling syslog would give us a stream of
dhcpd log activity which we could pipe into the database whereas the
dhcpd.lease~ database woould be a snapshot of the leases at that
moment in time.

regards,

------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Find the source of cybercrime! Almost every crime today involves a computer or mobile device. Learn how to become a 
Computer Forensics Examiner in InfoSec Institute's hands-on Computer Forensics Course. Up to three industry recognized 
certs available, online computer forensics training available. 

http://www.infosecinstitute.com/courses/computer_forensics_training.html
------------------------------------------------------------------------