The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Syslog server for cPanel servers ...Any one ?

Discussion in 'General Discussion' started by furquan, Jun 13, 2011.

  1. furquan

    furquan Well-Known Member

    Joined:
    Jul 27, 2002
    Messages:
    425
    Likes Received:
    0
    Trophy Points:
    16
    Hello Every one,

    I want to setup a separate syslog server for all my cpanel servers to record all their activity there. Has any one done this before or if there is any tutorial available to do this ?

    Any help would be appreciated.
     
  2. furquan

    furquan Well-Known Member

    Joined:
    Jul 27, 2002
    Messages:
    425
    Likes Received:
    0
    Trophy Points:
    16
  3. mobcdi

    mobcdi Well-Known Member

    Joined:
    Jul 13, 2009
    Messages:
    109
    Likes Received:
    0
    Trophy Points:
    16
    Can't help you but an interested in the same thing. Can I ask what made you look at ossec instead of something like kiwi syslog?
     
  4. furquan

    furquan Well-Known Member

    Joined:
    Jul 27, 2002
    Messages:
    425
    Likes Received:
    0
    Trophy Points:
    16
    The reason coz i read about it at couple of places and also since it is backed by good company ..I have not yet made up my mind...


    Have you implemented kiwi syslog ?
     
  5. mobcdi

    mobcdi Well-Known Member

    Joined:
    Jul 13, 2009
    Messages:
    109
    Likes Received:
    0
    Trophy Points:
    16
    No, I was looking @ splunk but like you haven't made up my mind either. Was there a core feature of ossec that attracted you or were you more interested in security & ids over say fault finding and troubleshooting.

    How did you see it integrating with cPanel hosts
     
    #5 mobcdi, Jun 15, 2011
    Last edited: Jun 15, 2011
  6. furquan

    furquan Well-Known Member

    Joined:
    Jul 27, 2002
    Messages:
    425
    Likes Received:
    0
    Trophy Points:
    16
    i have no idea yet...

    The reason i posted on the board so that members here could suggest one ..

    In fact i was looking for HOW-TO on this or any other log server...But in vein :(

    any one ?
     
  7. tier2

    tier2 Member
    PartnerNOC

    Joined:
    Dec 24, 2010
    Messages:
    9
    Likes Received:
    0
    Trophy Points:
    1
    I can see it integrating several different ways. Obviously the fact that you can configure any rule to match any log entry you could easily say, disable accounts (or change passwords) of email accounts that are sending spam or large volumes of spam. Automatically setup firewall rules to block IPs of people who are behaving badly. Send notifications related to disk space or other important things that should be monitored. File integrity checking is important as well. I also see it as imperative to get PCIDSS compliant.

    Of course there are plugins and other applications that can do several of these steps already, but I guess the PCIDSS compliance is my main reason for wanting to install OSSEC.
     
  8. furquan

    furquan Well-Known Member

    Joined:
    Jul 27, 2002
    Messages:
    425
    Likes Received:
    0
    Trophy Points:
    16
    Pcidss ????
     
  9. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
Loading...

Share This Page