The syslog tag has no wiki summary.
1
vote
1answer
23 views
Pimp rsyslogd to have less i/o (cron, pam,…) and less logging
On my raspberry I really don't need crons and pam logging and I want to have less i/o to make the SD card life a little longer..
I have already removed cron with the second line cron.none,
I'm ...
3
votes
0answers
25 views
How to tell if syslog.conf has a typo
I recently did in fact have a typo in my syslog.conf file, but I had no idea initially why I couldn't restart the daemon. In Ubuntu, all I seemed to get was a FAIL message after a rather long wait ...
4
votes
0answers
51 views
Receiving Syslog messages with a systemd Arch Linux
I'm feeling like I've overlooked the obvious, but I can't figure out how to get my Arch Linux server, which uses systemd, to receive and log syslog messages from a remote system.
I have a Cisco 678 ...
0
votes
1answer
47 views
newsyslog.conf logrotate when file is older than 6 month
I would like to delete following files with newsyslog.conf when the files are older than 6 month:
# logfile [owner:group] mode count size when flags [/pid_file]
...
2
votes
1answer
32 views
Configuring SELINUX to allow logging to a file that's outside /var/log
I have a daemon that uses syslog(3) to log to a file that is not a descendant of /var/log. Currently, this requires that SELINUX be disabled. How can I configure an enabled SELINUX to allow this ...
2
votes
3answers
258 views
Easy way to parse syslog date format
I'd like to write a script that analyses the last week's syslog.
But my syslog logs in a stupid date format, e.g. "May 22". If it logged as 2013-05-22, this task would be trivial.
Is there a way ...
1
vote
1answer
58 views
Errors in Syslog
Im getting this error on one of the server
May 21 16:45:42 ERPSSO gconfd (root-24528): Failed to write "/root/.gconf/apps/puplet/%gconf.xml": Failed to move temporary file ...
5
votes
1answer
39 views
What do you use the -t “tag” option for in logger?
When using the "logger" command to write messages to the system logs from scripts, I use the -t "tag" to store the scripts name along side the message it's written to the log.
I do this to make ...
1
vote
0answers
30 views
Nested filtering in rsyslogd
I'm using rsyslogd and trying to figure out why things like
if $hostname startswith 'd.42ba7373' and $programname == 'app' then /var/log/bla2app
work just fine, but
if $hostname startswith ...
3
votes
2answers
73 views
How to get time synced outputs (different timezones on servers)?
So imagine there are ~100 servers with different timezones (not all diff., but many-many timezones). There are outputs on the server logs like:
server1:BFE4C025 0420201413 P H sysplanar0 ...
1
vote
0answers
188 views
After ubuntu install + software raid 0 config, we see: rejecting I/O to offline device
I'm trying to pin down what this error rejecting I/O to offline device is, as seen towards the end of this syslog.
Ideas:
Problem with RAID-0 configuration (we have 2 4TB disks in RAID-0 and I do ...
0
votes
1answer
115 views
Analyze system logs with logwatch --range other than just “yesterday”
The manpage of logwatch says:
The format of the range option is:
--range "date_range [period]"
Parameter date_range (and optional period) must be enclosed in quotes
if it is ...
...
2
votes
1answer
115 views
How can I disable UFW logging for a specific event?
My router sends out multicast packets in regular intervals that are blocked by UFW's standard policies. These events are harmless but spam my syslogs and ufwlogs. I can't change the router's behaviour ...
3
votes
1answer
236 views
Logger command - how to store logs in given file?
Please explain what below command does.
logger_cmd="logger -p local0.info ${program-name}[$$]:"
$logger_cmd "There is some files missing in ${dest-dir}"
How can I write any message in log file?
I ...
3
votes
1answer
208 views
Send log messages to a different location
I want to send messages from C program and from Perl script to a file (for example, /var/log/my_log). I don't have access to the syslog daemon configuration, so I think in launch a differente syslog ...
1
vote
1answer
255 views
learning about general logging/logrotation on linux?
Assume, that beside the Apache web server logs I never had any contact with any kind of (professional) logs on any operation system. So Logging, although I understand some basics, is all together a ...
1
vote
1answer
230 views
How to set up a daemon to monitor an error log and trigger email notifications alerts (maybe syslogd?)
I have a log file that my custom application uses named 'application.log'.
I want to set up a daemon that will monitor this file and scan for any errors marked CRIT and ignore the other DEBUG and ...
2
votes
1answer
135 views
How does RSyslog receive log messages automatically?
Relevant part:
anisha@linux-trra~> sudo cat /var/log/messages
Aug 29 13:04:22 linux kernel: imklog 5.6.3, log source = /proc/kmsg started.
Aug 29 13:04:22 linux rsyslogd: [origin ...
4
votes
2answers
1k views
Difference between authpriv and auth?
What's the difference between authpriv and auth in syslog configuration?
It wasn't mentioned in syslog.conf, only tells me that such facility exists.
2
votes
1answer
372 views
Redirecting syslogd Error Messages to an Error Log or to a Null File?
I have an old PowerPC laptop (old Mac Powerbook G4) that I am running a variant of Debian Squeeze on (MintPPC 9).
I keep getting Kernel error messages when I am connected to a particular wireless ...
1
vote
1answer
1k views
kernel: mdadm: sending ioctl 1261 to a partition!
Every minute these three lines are added to /var/log/syslog:
Dec 6 06:04:01 machine1234 kernel: last message repeated 3 times
Dec 6 06:04:01 machine1234 CRON[28959]: (root) CMD ...
3
votes
2answers
400 views
Is it possible to filter duplicate lines from syslog?
On my mom's computer, she's getting here syslog/kern.log filled with lines from a Lexmark driver:
Sep 22 21:01:20 pamela-desktop kernel: [48657.676578] usb 1-3: usbfs: process 1490 (demond_nscan) did ...
3
votes
5answers
607 views
extract fields from “tail -f” of a syslog stream
Example line from syslog file:
Aug 1 10:25:50 10.10.10.1 id=firewall sn=XXXX time="2012-08-01 14:35:18 UTC" fw=x.x.x.x pri=6 c=1024 m=537 msg="Connection Closed" f=11 n=195273698 ...
1
vote
1answer
187 views
iptables logging prefix gets corrupted
I've been using iptables for some time but recently noticed that the log prefix I'd set had got corrupted. In /etc/iptables/rules.v4` I have:
-A LOGNDROP -j LOG --log-prefix "iptables denied: " ...
5
votes
2answers
190 views
How to prevent arp-scan from writing to syslog?
I am using arp-scan in a bash script to verify that a host is reachable. I have the script setup as a cron job that runs every minute and /var/log/syslog is filling up with the arp-scan output.
I ...
2
votes
2answers
6k views
(L)ubuntu 12.04 syslog to custom file (not /var/log/syslog but /var/log/mylog) - ubuntu 12.04
I successfully tested the following syslog "hello world" example on ubuntu 12.04:
// gcc giuspexample.c -o giuspexample
#include <syslog.h>
int main(int argc, char *argv[])
{
...
1
vote
1answer
5k views
Where are Apache file access logs stored?
Does anyone know where file access logs are stored, so I can run a tail -f command in order to see who is accessing a particular file.
I have XAMPP, which is an Apache server installed on my machine, ...
5
votes
2answers
2k views
Configuring syslogd in Ubuntu
In CentOS and many other distros you can configure syslogd using /etc/syslog.conf but in Ubuntu there is no such file. Which file I should edit for configuring syslogd in Ubuntu.
0
votes
0answers
287 views
To what does the byte sequence in this kerneloops (syslogd@hostname) message refer?
Message from syslogd@ROOROO at Mar 22 19:36:12 ...
kernel:[13988.165672] Oops: 0000 [#1] SMP
Message from syslogd@ROOROO at Mar 22 19:36:12 ...
kernel:[13988.169607] Stack:
Message from ...
4
votes
2answers
2k views
Can I redirect logfiles to syslog?
I have a Node.js server that is being monitored by forever. Forever generates three logfiles: the server STDOUT, STDERR and the log of forever itself.
$ forever -l forever.log -o out.log -e err.log ...
4
votes
2answers
427 views
Is it possible to make seek() operations on a named pipe return successful?
Is there any way to make it so that when programs try to perform seek() operations on a named pipe it will come back successful (but act as if the pipe was an empty file) instead of 'Illegal seek'?
I ...
1
vote
0answers
174 views
really basic bootstrap logger - (preferably syslog, cascade to http/raw)
I have a bootstrap shell script that is run as the very first thing when a fresh Linux server is booted up to multi-user mode with networking.
Once it is complete, I would like to report the error ...
2
votes
2answers
3k views
Cleaning log files under linux
I am using a kvm ubuntu 10.04 virtual machine to test some features of a kernel module. I grep through the /var/log files to observe the kernel messages about that module.
To start from a clean ...
1
vote
1answer
1k views
Suppress duplicate messages in rsyslog?
Is there a way to configure rsyslog to suppress identical duplicate messages?
In certain situations (often hardware failures) my syslog can grow to 100 MB or more due to repeated messages every ...
2
votes
1answer
310 views
Does a process invoking oom-killer kill itself?
Looking through syslog, I see lines like dd invoked oom-killer.
Does this mean dd is being killed by the oom-killer or does it mean dd asked oom-killer to go kill another high memory process?
5
votes
2answers
5k views
add new syslog facility
I would like to use syslog to log messages coming from my PHP based site.
My question is - can I add custom facility name?
I know there are predefined facilities like:
auth, authpriv, cron, dæmon, ...
3
votes
1answer
87 views
Is there a way to determine what services use a specific syslog facility on RHEL?
I am currently logging all haproxy information to local0 and loca1 facilities (depending on message level).
At the moment, logging gets properly routed to the haproxy logs 'err.log' and ...
3
votes
1answer
419 views
Using syslog from a kernel module
I am writing a linux kernel module to report statistics and send some log messages. Can I use syslog to accomplish this job? Or is printk the only way?
6
votes
4answers
1k views
Switch off syslog on laptop?
Is there any point in keeping logs on my laptop? This is not a server to debug problems via syslog. I occassionally want to look at dmesg | tail but that does not mean I need anything on disk. Wastes ...
5
votes
1answer
476 views
rsyslog rule inconsistently applied
I have created a rule to redirect messages containing {FILTER} in file /etc/rsyslog.d/40-filter.conf
:msg,contains,"{FILTER}" /var/log/filter.log
& ~
I have edited file /etc/rsyslog.conf so it ...
1
vote
3answers
282 views
Parsing log files
I am trying to develop a system statistics tool for Ubuntu that will store data about resource utilization of processes/users. I am storing these data in my own log files like ...
3
votes
4answers
5k views
make a log file
Is there any way to make a log file for maintaining some data in /var/log/ with the help of some library function or system call in c language in linux. And I also want to know the standards that we ...
2
votes
2answers
775 views
rsyslog is not discarding message as it should
I have setup rsyslog to write messages from local0.* to a seperate logfile, and then discard the messages. For some reason, the logs are going to both /var/log/syslog, and the new logfile.
I have ...
4
votes
1answer
5k views
Converting syslog-ng 3.0? format to 3.2 format
Just rebooted my system to this warning
:: Starting Syslog-NG [BUSY]
WARNING: Configuration file format is too old, please update ...
2
votes
1answer
216 views
Bash script and Database
I have an iptables firewall in Linux bridge (RHEL5). I want to extract information like IP address, port number, port type, date and time, etc. from log messages using a Bash script, and then want to ...
