RE: FC4 and No logs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

> -----Original Message-----
> From: fedora-list-bounces@xxxxxxxxxx 
> [mailto:fedora-list-bounces@xxxxxxxxxx] On Behalf Of Tomas Larsson
> Sent: Saturday, July 23, 2005 9:09 AM
> To: 'For users of Fedora Core releases'
> Subject: RE: FC4 and No logs
> 
> 
> > -----Original Message-----
> > From: fedora-list-bounces@xxxxxxxxxx
> > [mailto:fedora-list-bounces@xxxxxxxxxx] On Behalf Of Thomas Cameron
> > Sent: Saturday, July 23, 2005 1:33 AM
> > To: For users of Fedora Core releases
> > Subject: Re: FC4 and No logs
> > 
> > 
> > On Fri, 2005-07-22 at 21:29 +0200, Tomas Larsson wrote:
> > > By some strange reason, the logging seems to have stopped, boot,
> > > messages, secure etc hasn't logged anything since yesterday.
> > > 
> > > Anyone got any clues?
> > > 
> > > 
> > > With best regards
> > > 
> > > Tomas Larsson
> > > Sweden
> > > 
> > > Verus Amicus Est Tamquam Alter Idem
> > 
> > That sounds like a potentially bad thing - some cracks
> > involve killing off logging so that the sysadmin can't see 
> > what the bad guy is doing. Are you sure your system isn't 
> compromised?
> > -- 
> > Thomas Cameron, RHCE, CNE, MCSE, MCT
> > 512-241-0774 (office)
> > 512-924-8592 (cell)
> > 
> > --
> > fedora-list mailing list
> > fedora-list@xxxxxxxxxx
> > To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
> >
> 
> 
> Cant think that it's being compromised (you never know, do 
> you), got it
> upp and running same day.
> If it is compromised, then there is a serious flaw within FEDORA.
> 
> My thinking is that I've done something else. Syslogd is 
> running, so it
> must be something else, question is what though.
> 
> 
> With best regards
> 
> Tomas Larsson
> Sweden
> 
> Verus Amicus Est Tamquam Alter Idem
> 

When I do a "service syslog status", I'm getting the following response
Translated to English,

Syslogd is dead, but PID exists
Klogd (pid 1512) is running

On the console I'm getting "syslogd:0 /dev/console: permission denied"

I'm starting to think that it might be selinux that has screwed something
up.

With best regards

Tomas Larsson
Sweden

Verus Amicus Est Tamquam Alter Idem

Attachment: smime.p7s
Description: S/MIME cryptographic signature

[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux