{"id":220,"date":"2020-08-18T19:23:47","date_gmt":"2020-08-18T20:23:47","guid":{"rendered":"http:\/\/www.linux-tutorial.info\/?page_id=77"},"modified":"2020-08-22T19:26:39","modified_gmt":"2020-08-22T20:26:39","slug":"this-is-the-page-title-toplevel-55","status":"publish","type":"page","link":"http:\/\/www.linux-tutorial.info\/?page_id=220","title":{"rendered":"System Logging"},"content":{"rendered":"\nSystem Logging<\/title>\n<p>\nI am regularly confronted by Windows NT users who are overwhelmed by\nhow much information you can collect and process using the Windows NT Event\nViewer. It is so nice, they maintain, that occurrences (events) are sorted by\nsystem, <glossary>security<\/glossary> and applications. They go on with how much you can\nfilter the entries and search for specific values.\n<p>\nThe problem is, that’s where it stops. With the exception of a few security\nrelated events, what you are able to log (or not log) is not configurable under\nWindows NT. You get whatever Microsoft has decided is necessary. No more and\nno less. You can filter what is displayed, but there is little you can do to\nrestrict what is logged.\n<question id=\"\" type=\"tf\" text=\"Like Windows NT, etc. Linux differentiates between only three different types of logs.\" \/>\n<p>\nWith Linux the situation is completely different. Not only can you tell the\nsystem what the system should log but exactly where it should log it. On the\nother hand, Windows NT always logs specific events to a specific file. In\naddition, Windows NT differentiates between only three different types of\nlogs. This means you may need to wade through\nhundreds if not thousands of entries looking for the right one. Not only can you\nsay what is logged and what not, you can specifically define where to log any\ngiven type of message, including sending all (or whatever part you define) to\nanother machine, and even go so far as to execute commands based on the\nmessages being logged.\n","protected":false},"excerpt":{"rendered":"<p>System Logging I am regularly confronted by Windows NT users who are overwhelmed by how much information you can collect and process using the Windows NT Event Viewer. It is so nice, they maintain, that occurrences (events) are sorted by … <a href=\"http:\/\/www.linux-tutorial.info\/?page_id=220\">Continue reading <span class=\"meta-nav\">→<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-220","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"http:\/\/www.linux-tutorial.info\/index.php?rest_route=\/wp\/v2\/pages\/220","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.linux-tutorial.info\/index.php?rest_route=\/wp\/v2\/pages"}],"about":[{"href":"http:\/\/www.linux-tutorial.info\/index.php?rest_route=\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"http:\/\/www.linux-tutorial.info\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.linux-tutorial.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=220"}],"version-history":[{"count":1,"href":"http:\/\/www.linux-tutorial.info\/index.php?rest_route=\/wp\/v2\/pages\/220\/revisions"}],"predecessor-version":[{"id":721,"href":"http:\/\/www.linux-tutorial.info\/index.php?rest_route=\/wp\/v2\/pages\/220\/revisions\/721"}],"wp:attachment":[{"href":"http:\/\/www.linux-tutorial.info\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=220"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}