Slashdot Mirror

← Back to Stories (view on slashdot.org)

SDSC Secure Syslog

Posted by michael on from the footprints-in-the-snow dept.

Wee writes "I saw this morning that the San Diego Supercomputer Center has released Secure Syslog, a replacement for the standard Linux/UNIX syslog daemon they've been working on for some time. It adds security and performance features (modular design, highly scalable), while retaining backwards compatibility. According to their announcement, it is the first syslog implementation to target "syslog-reliable" (RFC 3195) functionality and it is the first syslog targeted at very high performance and forensically-sound auditing. It's currently under the UC's "free for non-commercial use" license, but they are looking at moving to a completely open license (BSD-style licensing was mentioned). If you have high-traffic systems and you need reliable syslogging, this might be a worth a look. Those needing syslogging over TCP/BEEP, sockets, etc as well as UDP might also want to check it out."

7 of 100 comments (clear)

  1. I smile whenever ancient Unix utils are updated by Frothy+Walrus · · Score: 5, Funny

    ...like syslog, for instance. Very extensible, appropriately hieroglyphic configuration, arbitrary manner of operation... it had everything a successful Unix daemon needs.

    Except security. Welcome to the 21st Century, syslog.

    1. Re:I smile whenever ancient Unix utils are updated by ChazeFroy · · Score: 3, Funny

      It adds security and performance features while retaining backwards compatibility

      Where have we heard this before?

  2. Hmm...forensically-sound auditing by carl67lp · · Score: 4, Funny

    I suspect that many of the top corporations may find a use for this in wake of all of the "Oops, I lost that important file!" scandals, and the need to trace steps of hackers too.

    I see a great future in this and the products that come after it. Kudos to the developers!

  3. Re: HP-sUX by Anonymous Coward · · Score: 5, Funny
    Now, will it compile without any changes under HP-UX?
    Sure, as long as you use gcc, and not HP's unbelievably expensive supposedly "ANSI" compiler, or the dreaded brain-dead K&R compiler that comes free with HP-UX.
    And as long as you remember root can't have any shell other than /sbin/sh.
    And of course you understand the next maintenance pack from HP will contain a depot that will overwrite key libraries without warning and break the thing completely.
    In short, it works just as well on HP-UX as anything else does.
    Feel my pain. I admin many large HP-UX machines.
  4. Re:TCP/BEEP??? by Anonymous Coward · · Score: 3, Funny

    Yes. It's the Ellen Feiss protocol.

  5. Buzzwords galore! by stratjakt · · Score: 5, Funny

    Modular!

    Scalable!

    Backwards compatible!

    Linux!

    RFC 3195 functionality!

    high performance!

    forensically-sound auditing!

    If only it was vertically integrated. Oh well, better luck next time!

    till then, /dev/null is all the syslog I need!

    --
    I don't need no instructions to know how to rock!!!!
  6. Re:Brazil by Bazman · · Score: 4, Funny

    And with TCP/IP being a reliable transport medium, there's no chance of 'Tuttle' becoming 'Buttle'! [*]

    We've named one of the forms we use in our department a 27B/6 in honour of the film. We refuse to buy any equipment until someone has filled one in.

    Baz

    [*] part of the plot of the film is that Mr Buttle gets mistakenly arrested instead of Mr Tuttle because a swatted fly falls into the machines that are typing out names of people to be arrested.