[syslog-ng] connecting to syslog-ng
Torsten Curdt
tcurdt at vafer.org
Fri Sep 22 16:22:54 CEST 2006
> > > > Basically I want only to connect to those machines running syslog-ng
> > > > in certain situations. Like
> > > >
> > > > ssh root at machine tail -f /var/log/messages
> > > >
> > > > ...without the need for a ssh account
> > >
> > > what do you think are the advantages are to avoiding ssh?
> >
> > Deployment and security related. Just no option to give ssh access to
> > dozens of developers just to read the logs. Those machines are as
> > locked up as possible.
>
> how are you going to provide access control to the logs from the client
> machines. to my knowledge, syslog-ng doesnt provide any access control
> mechanisms, at least the kind you are talking about.
Syslog-ng is only available on an internal interface ...that's good enough.
> you can restrict the commands being run with ssh keys. this might be an
> adequate solution for you.
Not really ..."no ssh" is the call
cheers
--
Torsten
More information about the syslog-ng
mailing list