I've got a script that moves /var/log/secure to another file. I (guess) then
I need to kill syslogd, and re-start it.
1) Is that really necessary? I've noticed that once I've moved the file
(using "mv"), even if I touch the file (to re-create an empty one), it still
doesn't write to the file. Is there any other way to get syslogd to start
2) How do I do that? What would the line that kills the process look like?
I've noticed the file /var/???/syslodg.pid (can't remember the name offhand)
contains the pid, e.g. "3315" in the file. How do you do this?
3) Last question (interesting one) : Let's say /var/log/secure is about 2MB.
I'm doing the command (via script) "mv /var/log/secure /var/log/secure.old".
Now, someone logs on incorrectly. Will this be logged to this file? Or will
I lose that record ?