Systemd-journald in systemd service manager has become a common approach to log management in Linux, as well. Because...
systemd-journald is a part of the system, it can capture log messages generated by anything systemd-related, such as remote servers. Systemd-journald doesn't have as many features as rsyslog, however.
How administrators gather information from log files depends on how the logs are configured. Under a standard configuration, every server logs to its own local /var/log directory, and the administrator will have a hard time figuring out what is happening where.
For smart log management in Linux, administrators should configure
Open source alternatives
Logcheck scans system logs for specific information an administrator wants
Admins looking for a complete system with a web-based monitoring option should also consider Graylog2. It enables administrators to collect, index and analyze log data that comes from any source and presents the results in a dashboard where it's easy to see what is happening where.
Dig Deeper on Linux servers
Related Q&A from Sander van Vugt
Containers in the data center can help maximize server capacity, but there are a few things to consider before a Docker or Kubernetes implementation. Continue Reading
File management is an essential part of working within Linux. Knowing a few basic commands makes it easier to move content and avoid file ... Continue Reading
Linux has a security framework with multiple layers, which makes it hard to maintain permissions and privileges. User-based profiles and whitelisting... Continue Reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.