disable (new)syslog rotation and raise securelevel ... possible?

[Fernan Aguero]

Hi,

I'd like to harden my FreeBSD installation, and thus would like to, e.g.

i) chflags sappnd /var/log/*
ii) raise the securelevel of the system

Is this possible? I've read elsewhere that newsyslog would not work in
such a system ... what are the possible workarounds?

I wouldn't bother taking the system down once a week or every other
week, and manually lowering the securelevel, running newsyslog, etc.
Is there a guide somewhere on how to go about this?

Thanks!

-- 
fernan