On Sat, Aug 25, 2007 at 10:17:30AM +0300, Lars Nood??n wrote:
> On Fri, Aug 24, 2007 at 04:31:20PM -0500, Jacob Yocom-Piatt wrote:
> > i expect he means push syslog messages to the log server with encryption,
> > e.g. tunnel through ssh, etc.
>
> That's vaguely what I was wondering, but there seems to be a risk that
> the messages might not get through.
Yes. Failsafe logging is possible, but takes more than just setting up
IPsec.
> It would be less than two dozen
> workstations generating the messages, but maybe an encrypted tunnel
> would be too high a burden on the receiving computer's CPU.
Encryption is cheap, and how much logging traffic do these stations
generate anyway?
Joachim
--
PotD: x11/gnome/libgnomecanvas - graphics library for GNOME
