Answer Posted / amit kumar ghosh
There are Three centralized loggin demons
1)syslogd
2)klogd
3)auditd
klogd:- collect log file created by the Kernel
syslogd:- Collect log file created by the system
auditd:- Collect log file created by the SELinux
After collecting the log system store logs on different location
/var/log/dmesg:- Created at boot time, by kernel
/var/log/messages:- standard system error message,
/var/log/secure:- authentication related log
/var/log/maillog:- Mial related log
/var/log/audit/audit.log:-Selinux related log
We can redirect the log by configuring
/etc/sysconfig/syslog
/etc/syslog.conf
Is This Answer Correct ? | 5 Yes | 0 No |
Post New Answer View All Answers
What are the differences between FTP , NFS , SAMBA servers explain separately.
why /etc/shadow file do not have any permission ?
How to catagories tickets in RHEL, which tickets are belong to PROBLEM, INCIDENT and CHANGE management? please given to me with examples
Why is it suggested to disable journalism in ext4 filesystem?
i installed clustering packages.When i try to run it getting LUCI error...what is it..??
I want to configure production interface and manage interface, how to configure both interfaces in Linux. please post the answers
This question is belong to linux support. "one of my customer told to me, my application is getting slow response". how to resolve the issue. what are the steps you will follow to resolve the issue.
What is Hard mount and soft Mount?
What is the difference between ext3 and ext4?
As a system admin i want to know some things what are the troubleshooting issues we are facing frequently and what are the tickets will be raised.
How to Trouble shoot performance issue in RHEL administration ? please give to one example
what is difference between TFTP abd FTP?
what is the gate of ftp server in redhat linux?
1. User gaves df -h and the system get hanged. why ? 2. what is the hardlink and softlink mount ? 3. why is portmape should be started ? 4. what is nologin option 5. how to restrict users from accessing nfs ? 6. what is the difference between cpio and tar 7. what are the kernel parameters ? how to find out it ? 8. why we use sysctl.conf ? 9. if we gives init1 from multiuser runlevel, will it affect other users who already logged in to the system ? 10. what will be the available space to use after configuering raid5 with 5 disks each having 5gb spce ?