I have what I suspect is a fairly common requirement for immediate log file security for auditing. At the same time, I have the same requirement for logging several arbitrary applications. After considering various options, I'm currently looking at writing logs to NetApp SnapLock: http://www.netapp.com/products/software/snaplock.html. Does anybody have any specific experience with this kind of setup? I'm particularly interested in the practicalities of archiving.
Thanks,
Matt
--
Red Hat, Global Professional Services
M: +44 (0)7977 267231
GPG ID: D33C3490
GPG FPR: 3733 612D 2D05 5458 8A8A 1600 3441 EA19 D33C 3490