Hello,
We have a lot of Solaris servers with each multiple applications that
generate application logs.
Some application logs have to be read by "non privilege" users.
We can not give direct accesse on these logs. So the idea is to have a
log server.
These applications do not use syslog. So it is not easy to export these
logs to amother servers.
What do you suggest me ?
We need a solution as secure as possible. So no NFS or Samba

Thank's a lot for any advices

Thank you Mickael.
Some of our Solaris servers was not prepared to become "guest" users. A
lot of Application were installed with "other" access right. We can not
remove this access right so easy without to be sure that they are no
impact.
So in between time I also think to use SUDO. But I'm not sure that SUDO
can solve my problem, because of some files that are too "open" (other
acces).
And restricted shell can not prevent acces a file if I know his path,
right ?
Regards.

Michael Vilain wrote:

kona_iron@yahoo.fr wrote:
logger -p local1.notice -t APPSERV01 -f /path/logfile
should read the file "/path/logfile" line by line and sent it to syslog
with the priority of "local1.notice" and tag with "APPSERV01"
Then setup syslog for remote logging for local1.notice etc.

Might have to get a little more tricky doing something like:

cat <logfile> >> <store log> && logger -p local0.notice -t APPSERV01 -f
<logfile> && cat /dev/nul > <logfile>

Giving you a full set of log on the application server <store log> and a
running log to send to syslog.

Wack it in cron and your away.


Other possible options I can think of:
Is replacing the application log file with a named pipe and running the
logger command on that.
Or even use scp to go and get the files every 5 mins or so if realtime
is not that important.

-Harv

Hi Harv,
Thank you, good advices.

harv wrote: