|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
Re: [PLUG] what logs to watch?
|
Moreover, check out
/etc/syslog.conf
because the default log files locations can be changed by editing it.
On Thu, 13 Dec 2001 epike@isinet.com wrote:
> here some more:
>
> /var/log/secure (if your'e root)
>
> who /var/log/wtmp - logins
> /var/log/xferlog - ftp tranfers
>
> also the Apache Error logs shows you IIS-style worms attempts
>
> JondZ / E.Pike
>
> >
> > now that i have a persistent internet connection via cablemodem, what logs
> > should i routinely check for security breaches? if someone attempts to
> > compromise my box, i'd like to know, so where do i look? any suggestion are
> > appreciated.
> >
> > thanks,
> > chris
> >
> > ______________________________________________________________________
> > Philadelphia Linux Users Group - http://www.phillylinux.org
> > Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce
> > General Discussion - http://lists.phillylinux.org/mail/listinfo/plug
> >
>
>
> ______________________________________________________________________
> Philadelphia Linux Users Group - http://www.phillylinux.org
> Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce
> General Discussion - http://lists.phillylinux.org/mail/listinfo/plug
>
>
______________________________________________________________________
Philadelphia Linux Users Group - http://www.phillylinux.org
Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce
General Discussion - http://lists.phillylinux.org/mail/listinfo/plug
|
|