Re: /var/log/syslog is smaller than last time checked!

To: debian-user@lists.debian.org
Subject: Re: /var/log/syslog is smaller than last time checked!
From: Camaleón <noelamac@gmail.com>
Date: Fri, 16 Sep 2011 14:24:36 +0000 (UTC)
Message-id: <[🔎] pan.2011.09.16.14.24.36@gmail.com>
References: <[🔎] 4E73594A.10808@iki.fi>

On Fri, 16 Sep 2011 17:12:26 +0300, Jari Fredriksson wrote:

> I just received this message from logcheck, on two machines (Debian), at
> the same minute. They do not share /var/log/ via NFS or anything.
> 
> What might this be? Same minute!
> 
> System Events
> =-=-=-=-=-=-=
> ***************
> *************** This could indicate tampering. 
> *** WARNING ***: Log file /var/log/syslog is smaller than last time
> checked!

Hum... could it be because logrotate made its job and cutted the syslog 
file while logcheck was analyzing it? 

It could be just a pure casualty :-?

Greetings,

-- 
Camaleón

Reply to:

References:
- /var/log/syslog is smaller than last time checked!
  - From: Jari Fredriksson <jarif@iki.fi>

Prev by Date: Re: Logitech K360 keyboard NumLock behavior gets turned on by Shift keys!
Next by Date: Re: Logitech K360 keyboard NumLock behavior gets turned on by Shift keys!
Previous by thread: /var/log/syslog is smaller than last time checked!
Next by thread: automated editing of text files
Index(es):
- Date
- Thread