On Tue, Jan 28, 2003 at 11:21:42AM -0800, seberino@spawar.navy.mil wrote:
Where can I find docs on setting up secure (SSH) remote syslog-ng logging?
People tend to choose stunnel, you could modify the instructions appropriately, though. Be sure that if you use ssh that the account doesn't allow general login - its probably for fear of account misuse that people don't use ssh. Well, that and no built-in mechanism to reconnect if the connection drops. The right place to start is with your (openssh) authorized_keys file having settings like this: no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding ssh-dss AAAAB3N... syslog-ng@remotehost "logging account only" Anyways, most people who need instructions on setting ssh port forwarding shouldn't use it for syslog traffic. Use stunnel and you'll be better off. -- Nate Campi http://www.campin.net A complex system that works is invariably found to have evolved from a simple system that worked. -John Gall