J
jankeir
Guest
Basically grep and tail become a bit cumbersome if you have to do it across hundreds of servers, especially if those servers are being replaced all the time and you want access to the logfiles of servers that are no more. You might think: then why do you replace the servers all the time? Well: you have to. For one, every time a security patch is released for a server: how do you know the old server was not compromised before you had the chance to apply the patch and has a backdoor? Has the patch really been applied? Or has the attacker replaced apt-get/yum/... Looking at the logs and such? How do you know those are not compromised? ...
Continue reading...
Continue reading...