SoC: Distributed Audit Daemon project
Alexey Mikhailov
karma at FreeBSD.org
Sat May 26 07:49:26 UTC 2007
On Friday 25 May 2007 22:04:34 Benjamin Lutz wrote:
> On Friday 25 May 2007 01:22:21 Alexey Mikhailov wrote:
> > [...]
> > 2. As I said before initial subject of this project was
> > "Distributed audit daemon". But after some discussions we had
> > decided that this project can be done in more general maner. We can
> > perform distributed logging for any user-space app.
> > [...]
>
> This sounds very similar to syslogd. Is it feasible to make dlogd a
> drop-in replacement for syslogd, at least from a syslog-using-program
> point of view?
Our project concentrates on log shipping. We're paying most attention
to securely and reliable log ships. So our project differs from syslogd
in major way.
But actually it could be possible to be dlogd used by syslogd\syslog-ng
for logs shipping, as I see it. I.e. consider this scenario.
(client syslogd) <-> (API) <-> (client-specific part of dlogd)
^^
||
vv
(network channel)
^^
||
vv
(server syslogd) <-> (API) <-> (server-specific part of dlogd)
But server-side communcation (i mean server-side syslogd <-> API <->
dlogd) will need more thinking. I'm not going to think of\implement
this kind of feature this summer but I'll consider it later for sure.
More information about the freebsd-hackers
mailing list