Basically I want only to connect to those machines running syslog-ng in certain situations. Like
ssh root@machine tail -f /var/log/messages
...without the need for a ssh account
what do you think are the advantages are to avoiding ssh?
Deployment and security related. Just no option to give ssh access to dozens of developers just to read the logs. Those machines are as locked up as possible.
how are you going to provide access control to the logs from the client machines. to my knowledge, syslog-ng doesnt provide any access control mechanisms, at least the kind you are talking about.
Syslog-ng is only available on an internal interface ...that's good enough.
you can restrict the commands being run with ssh keys. this might be an adequate solution for you.
Not really ..."no ssh" is the call cheers -- Torsten