Log files
TKLV LV QRW aQ acWXal WRRl, EXW lRJ filHV aUH a YHUy XVHIXl source of security-related messages that you should regularly check for abnormal messages. It is recommended that you create small scripts, in your preferred scripting language, to extract XQXVXal PHVVaJHV IURP yRXU lRJ filHV.
The following simple grep -w command displays the sudo (man sudo) related information found in the system.log filH:
$ grep -w sudo system.log