I know how to setup a UNIX/Linux log server and have the other boxes forward their logs to it. Can Windows boxes be setup to forward their logs to a Linux box? Does Windows even have the concept of configurable logging? Does my question even make sense? Greg -- Greg Freemyer
On Wed, 2003-10-01 at 01:44, Greg Freemyer wrote:
I know how to setup a UNIX/Linux log server and have the other boxes forward their logs to it.
Good!
Can Windows boxes be setup to forward their logs to a Linux box?
AFAIK, Windows can't forward their events to any other host. They can, however, be periodically exported with eventdmp.exe in the Resource Kit (if my memory serves me well) to a text file.
Does Windows even have the concept of configurable logging?
I think Windows is pretty poor wrt logging. You can configure the retention policy for individual logs (System/Security/Applications) and, with the help of Group Policy or regedit tweaks, you can change the level of audit, but nothing more.
Does my question even make sense?
Yes! It's Windows the one which doesn't make sense! ;)
AFAIK, Windows can't forward their events to any other host. They can, however, be periodically exported with eventdmp.exe in the Resource Kit (if my memory serves me well) to a text file.
Actually, yes they can, if you search for a third party application called event2syslog (or something like that) We use it where I work for our last remaining NT servers, and it works pretty well. Can't remember where we got it from though I'm afraid... Oh yeah, and it's free. (beer, not speech) -- James Ogley, Webmaster, Rubber Turnip james@rubberturnip.org.uk http://www.rubberturnip.org.uk Jabber: riggwelter@myjabber.net Using Free Software since 1994, running GNU/Linux (SuSE 8.2). GNOME updates for SuSE: http://www.usr-local-bin.org
I believe you are referring to evtsys from Purdue University. https://engineering.purdue.edu/ECN/Resources/Documents/UNIX/evtsys peter On Wed, 1 Oct 2003, James Ogley wrote:
AFAIK, Windows can't forward their events to any other host. They can, however, be periodically exported with eventdmp.exe in the Resource Kit (if my memory serves me well) to a text file.
Actually, yes they can, if you search for a third party application called event2syslog (or something like that)
We use it where I work for our last remaining NT servers, and it works pretty well.
Can't remember where we got it from though I'm afraid...
Oh yeah, and it's free. (beer, not speech) -- James Ogley, Webmaster, Rubber Turnip james@rubberturnip.org.uk http://www.rubberturnip.org.uk Jabber: riggwelter@myjabber.net Using Free Software since 1994, running GNU/Linux (SuSE 8.2). GNOME updates for SuSE: http://www.usr-local-bin.org
-- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
participants (4)
-
Felipe Alfaro Solana
-
Greg Freemyer
-
James Ogley
-
peter@frontierflying.com