9.3. 在安装期间记录日志到远程主机
Fedora uses rsyslog
to provide a syslog service. The default configuration of rsyslog
rejects messages from remote systems.
只允许安全网络的远程Syslog访问
The rsyslog
configuration detailed below does not make use of any of the security measures available in rsyslog
Crackers may slow or crash systems that permit access to the logging service, by sending large quantities of false log messages. In addition, hostile users may intercept or falsify messages sent to the logging service over the network.
To configure a Fedora system to accept log messages from other systems on the network, edit the file
/etc/rsyslog.conf
. You must use
root
privileges to edit the file
/etc/rsyslog.conf
. Uncomment the following lines by removing the hash preceding them:
$ModLoad imudp.so
$UDPServerRun 514
Restart the rsyslog
service to apply the change:
su -c '/sbin/service rsyslog restart'
Enter the root
password when prompted.
防火墙必须重新配置
By default, the syslog service listens on UDP port 514. To permit connections to this port from other systems, choose → → . Select Other ports, and Add. Enter 514
in the Port(s) field, and specify udp
as the Protocol.