On 12/13/2015 12:45 PM, Valeri Galtsev wrote: > On Sun, December 13, 2015 11:36 am, Alice Wonder wrote: >> >> >> On 12/13/2015 08:39 AM, Timothy Murphy wrote: >>> Alice Wonder wrote: >>>> One of the benefits of systemd is the dependency based parallel > startup. >>>> The same speed can often be achieved with system V init by fine tuning > when the services start but systemd does that automatically. >>> If it's no faster then why is it a benefit? >> >> Binary logs with checksums is one benefit, much harder for a hacker or > malware to hide its tracks. > > Without intent to be a pain in a... just respectfully disagreeing. > > Harder only from the point of view current tools script kiddies use will > not deal with then. Fundamentally better security/forensics wise would be > to keep logs on remote secure server. Like in the very first computer > security lesson: you can not trust anything on compromised machine. It's a matter of knowing your machine has been compromised. Modifying the binary logs to hide that you are there will result in checksum inconsistencies, removing a few lines from text logs will not. Yes, you can use text log to a remote machine to avoid that, but binary logs let you on the local machine. -- -=- Sent my from my laptop, may not be able to respond timely