bindloganon

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision
Previous revision
bindloganon [2017-06-29T04:13:24Z]
fusl created
bindloganon [2017-07-04T23:45:53Z] (current)
fusl
Line 49: Line 49:
 This method anonymizes named logs as they are generated. It also permits preprocessing of raw log data (with IP addresses intact) for purposes of traffic analysis, blacklisting, etc. The instructions below assume the following: This method anonymizes named logs as they are generated. It also permits preprocessing of raw log data (with IP addresses intact) for purposes of traffic analysis, blacklisting, etc. The instructions below assume the following:
   * Running on Unix system that supports signals and 'pidof' utility.   * Running on Unix system that supports signals and 'pidof' utility.
-  * Running BIND named daemon in a chroot jail under user 'named'. The chroot jail is /var/named/chroot in this example. +  * Running BIND named daemon in a chroot jail under user ''named''. The chroot jail is ''/var/named/chroot'' in this example. 
-  * Log will be saved in /var/named/chroot/var/log directory.+  * Log will be saved in ''/var/named/chroot/var/log'' directory.
   * Support for named pipes.   * Support for named pipes.
   * Using logrotate to manage logs.   * Using logrotate to manage logs.
 ==== Installation instructions ==== ==== Installation instructions ====
-  * Install the following script outside of your chroot jail. Set the permissions so that it can be executed by user 'named'. (In this example, I've copied the script to /var/named.)+  * Install the following script outside of your chroot jail. Set the permissions so that it can be executed by user ''named''. (In this example, I've copied the script to ''/var/named''.)
  
   #! /usr/bin/perl   #! /usr/bin/perl
Line 133: Line 133:
   * Check to make sure named.log has been created and is logging data.   * Check to make sure named.log has been created and is logging data.
  
-# tail -f /var/named/chroot/var/log/named.log+  # tail -f /var/named/chroot/var/log/named.log
  
   * Check to make sure logs are rotated when logrotate is called, and that logging is initiated in the newly-created named.log file.   * Check to make sure logs are rotated when logrotate is called, and that logging is initiated in the newly-created named.log file.
  • /wiki/data/attic/bindloganon.1498709604.txt.gz
  • Last modified: 4 years ago
  • by fusl