Hi<br><br>I used to capture logs shown on a Sun servers /dev/console (bootup, crash/panic<br>& shutdown messages amongst them) by using a smaller Sun server to telnet to<br>a terminal server which is connected to the "to be captured" Sun servers' consoles.<br>
<br>Is there any equivalent for Linux? Can I connect up to Com1 or Com2 ports<br>of the PC server hardware running Linux?<br><br><br>When the auditor requires "audit trail", do they normally ask for "psacct" &<br>
"sudo" logs only or what? Kindly share what your auditors/security guys<br>asks for when they ask for audit trail.<br><br>I come from OpenVMS background & to me "audit trail" means screen logging<br>
& keylogging everything that's entered by System Admin/support personnel<br>(in Unix equivalent, the moment you login, you issue <br> "script logfile; then do whatever ...; exit" - the scripted logfile is what's needed<br>
<br><br>Thanks<br>Roger<br><br><br><br><br>