Carnegie Mellon University Website Home Page
 
Skip navigation and jump directly to page content
Documentation Index
Security
Unix Machines
Basic Guidelines
Security Updates
Account & Password
Network Services
Tripwire
Log Files
Accounts
Network, Phone & TV
Software
Email & Calendar
Secure Your Computer
Clusters & Printing
Web Services
Classroom & Event Support
Education & Outreach
Support & Repair
Information Security Office (ISO)

Log Files

UNIX systems are able to log a wide variety of activities on the system. These include system events (device failures, reboots, etc.), user logins, and in some cases, security alerts for potential attacks. System log files should be viewed with some regularity and frequency in order for the system administrator to be aware of what is happening on and to the system. Some security guidelines recommend that the log files be stored on a different machine, or on write-once devices (CD-Rs) so that an intruder cannot erase the log of their actions.

At the very least, you should be aware of what log files are your system, what is being logged, and you should arrange to view the files periodically.

Last Updated:  May 26, 2004