
This is the Title of the Book, eMatter Edition
Copyright © 2007 O’Reilly & Associates, Inc. All rights reserved.
Syslog-ng
|
417
If you’re willing to bet that it is, obtain and install TCPwrappers and refer to its
hosts_access(5) manpage for details. Note that despite its name, TCPwrappers’ hosts
access can be used to control UDP-based applications.
Syslog-ng
As useful and ubiquitous as syslog is, it’s beginning to show its age. Modern Unix
and Unix-like systems are considerably more complex than they were when syslog
was invented, and they have outgrown both syslog’s limited facilities and its primi-
tive network-forwarding functionality.
Syslog-ng (“syslog new generation”) is an attempt to increase syslog’s flexibility by
adding better message filtering, better forwarding, and eventually (though not quite
yet), message integrity and encryption. In addition, Syslog-ng supports remote log-
ging over both the TCP and UDP protocols. Syslog-ng is the brainchild of and is pri-
marily developed and maintained by Balazs (“Bazsi”) Scheidler.
Although its’ much newer than syslogd, Syslog-ng is both stable and mature and has
already been incorporated into major Linux distributions, including SUSE and
Debian. A couple of its advanced security features are still works in progress, but
Syslog-ng can be used in conjunction with TCP “tunneling” tools such as stunnel and
ssh to authenticate or encrypt log messages ...