Syslog is a standard for computer data logging. It separates the software that generates messages from the system that stores them and the software that reports and analyzes them.
Questions tagged [syslog]
144 questions
66
votes
9 answers
How to stop kernel messages from flooding my console?
I'm using Centos 6, rsyslog logging. Console is flooded with kernel messages.
Klogd is not running (I'm using rsyslog)
Rsyslog config does not direct anything to the console
Even tried stopping rsyslog altogether
Still something is flooding my…
haimg
- 23,153
- 17
- 83
- 117
17
votes
3 answers
Rsyslog outputting to custom log file
Can anyone tell me what I did wrong here?
Here is the ultimate question:
Why when I use the logger command can I not get it to output to a custom log file in /var/log?
In my script:
logger -i -t ANM -p local7.info "This is a local 7 test"
In the…
Atomiklan
- 657
14
votes
6 answers
Monitor Postfix outgoing mail delivery
I'm using GNU Mailman with Postfix to run a mailing list, and would like to monitor the delivery of outgoing mail, that is: for each mail sent from the list, check whether a 250 (OK) message was answered, and if not, report back to me.
For now, I'm…
Tastalian
- 243
11
votes
8 answers
Bad minute in crontab?
I get the following error in my syslog:
Oct 17 13:14:03 tracker cron[873]: (*system*) ERROR (Syntax error, this crontab file will be ignored)
Oct 17 13:14:03 tracker cron[873]: Error: bad minute; while reading /etc/crontab
I don't see any bad…
David Pfeffer
- 583
9
votes
1 answer
Why is syslog so much slower than file IO?
I wrote a simple test program to measure the performance of the syslog function. This are the results of my test system: (Debian 6.0.2 with Linux 2.6.32-5-amd64)
Test Case Calls Payload Duration Thoughput
…
ceving
- 2,007
9
votes
1 answer
rsyslog changing file owner
I'm trying to change the owner and group of a log to a different user than what is is rsyslog.conf, which has:
#
# Set the default permissions for all log files.
#
$FileOwner syslog
$FileGroup adm
$FileCreateMode 0640
$DirCreateMode 0755
$Umask…
Andy
- 91
9
votes
1 answer
Simple way to generate syslog over TCP?
I want to troubleshoot logstash server issue and need to generate syslog message from time to time. Is there a simple way that allows me to connect to a syslog server using TCP and send some arbitrary syslog messages?
some user
- 2,846
7
votes
4 answers
How do I permanently delete /var/log/lastlog?
My /var/log/lastlog file is huge. I know it's really only a few kilobytes, but tar isn't smart enough to know that, so when I image a virtual machine, my restore fails because it thinks I'm trying to load more data than I have capacity on my…
GregB
- 217
6
votes
1 answer
How to get SSH logs and send to remote syslog server in macOS?
On Linux, I can get sshd logs such as:
sshd Accepted publickey for user from xxx.xxx.xxx.xxx port xxx ssh2: RSA SHA256:.....
and send them to a remote syslog server by adding a file in /etc/rsyslog.d/
How can I get similar data on MacOS 10.14…
weiyin
- 261
6
votes
1 answer
Why does `& ~` mean "discard the messages that were matched in the previous line"?
In the webpage iptables log
Create /etc/rsyslog.d/iptables.conf with the following contents:
:msg, startswith, "iptables: " -/var/log/iptables.log
& ~
The second line means discard the messages that were matched in the previous line.
Why does &…
scrapy
- 173
5
votes
1 answer
Are there any command line syslog listeners for Linux?
We have several embedded systems that can be configured to send log data to a remote server for debugging purposes. However such is the hassle of configuring the developers machine to listen and filter this data most of the guys tend to just watch…
stsquad
- 509
5
votes
1 answer
Configuring syslogd to accept remote connections on OS X Mountain Lion and assign them a category
From another thread here on Stack Exchange, I have discovered that it's pretty easy to enable syslogd on Lion or Mountain Lion to accept incoming connections.
cd /System/Library/LaunchDaemons
sudo /usr/libexec/PlistBuddy -c "add…
Kai Howells
- 51
5
votes
1 answer
How to send log entries to a remote server running journald (systemd)
I have an iot module running a firmware that has the capability of sending the logs to a remote syslog host. I've already configured it to send the entries to an Ubuntu Server running rsyslog.
I'd like to know which would be the best practice here…
Dario
- 173
5
votes
1 answer
Running OSX as a syslog server
I want to receive the logs from my router (an ASUS RT68U) on my laptop (OSX 10.9). It supports syslog and OSX has ASL (a superset of syslog, apparently). I've followed the instructions in OS X Lion as a syslog server but the Console shows nothing…
ian
- 422
- 1
- 6
- 20
4
votes
1 answer
configure rsyslog server to log incomming messages with time of the rsyslog server
I would like to configure our rsyslog server to drop the timestamp of the incoming messages and replace them with time from the rsyslog server.
Reason for this is that we have some system that don't have the option to change the time on their…
cptPH
- 143