Logging Flashcards
What are logs?
Data files that contain the accounting and audit trail for actions performed by a user on the computer or network.
Where are system logs stored for Linux?
In the /var/log directory
What are the 3 types of logs for the Windows system?
Security
System
Application
What do Security Logs track?
Logs the events such as successful and unsuccessful user logins to the system
What do System Logs track?
Logs the events such as system shutdowns and driver failures
What do Application Logs track?
Logs the events for the OS and third-party applications.
Where do you find the logs for Windows?
In the Event Viewer app
Where do you want to consolidate all the logs into a single repository?
A SYSLOG server
Note: This is a much more efficient way to look at logs
What is a SYSLOG?
This is an app that takes all of the logs from all necessary places in a network and consolidates them in an easier to read space. It uses PORT 514 over UDP>