From: Andy Witter Date: Mon, 17 Dec 2012 18:37:21 +0000 (-0500) Subject: adding rsyslog information X-Git-Tag: GenaSYS-2.3.6~52 X-Git-Url: https://old-git.evergreen-ils.org/?a=commitdiff_plain;h=9bb5460de8aa29c5749dbb6af018d05baa5233ca;p=contrib%2Fpines%2Fgenasys.git adding rsyslog information --- diff --git a/rsyslog/control.tar.gz b/rsyslog/control.tar.gz new file mode 100644 index 0000000..cf3e58d Binary files /dev/null and b/rsyslog/control.tar.gz differ diff --git a/rsyslog/data.tar.gz b/rsyslog/data.tar.gz new file mode 100644 index 0000000..4a545d4 Binary files /dev/null and b/rsyslog/data.tar.gz differ diff --git a/rsyslog/debian-binary b/rsyslog/debian-binary new file mode 100644 index 0000000..cd5ac03 --- /dev/null +++ b/rsyslog/debian-binary @@ -0,0 +1 @@ +2.0 diff --git a/rsyslog/etc/apparmor.d/usr.sbin.rsyslogd b/rsyslog/etc/apparmor.d/usr.sbin.rsyslogd new file mode 100644 index 0000000..1870a4a --- /dev/null +++ b/rsyslog/etc/apparmor.d/usr.sbin.rsyslogd @@ -0,0 +1,53 @@ +# Last Modified: Sun Sep 25 08:58:35 2011 +#include + +# Debugging the syslogger can be difficult if it can't write to the file +# that the kernel is logging denials to. In these cases, you can do the +# following: +# watch -n 1 'dmesg | tail -5' + +/usr/sbin/rsyslogd { + #include + #include + + capability sys_tty_config, + capability dac_override, + capability dac_read_search, + capability setuid, + capability setgid, + capability sys_nice, + capability syslog, + + # rsyslog configuration + /etc/rsyslog.conf r, + /etc/rsyslog.d/ r, + /etc/rsyslog.d/** r, + /{,var/}run/rsyslogd.pid rwk, + /var/spool/rsyslog/ r, + /var/spool/rsyslog/** rwk, + + /usr/lib{,32,64}/rsyslog/*.so mr, + + /dev/tty* rw, + /dev/xconsole rw, + @{PROC}/kmsg r, + + /dev/log wl, + /var/lib/*/dev/log wl, + /var/spool/postfix/dev/log wl, + + # 'r' is needed when using imfile + /var/log/** rw, + + # Add these for mysql support + #/etc/mysql/my.cnf r, + #/{,var/}run/mysqld/mysqld.sock rw, + + # Add thes for postgresql support + ##include + ##include + #/{,var/}run/postgresql/.s.PGSQL.*[0-9] rw, + + # Site-specific additions and overrides. See local/README for details. + #include +} diff --git a/rsyslog/etc/default/rsyslog b/rsyslog/etc/default/rsyslog new file mode 100644 index 0000000..ee6c065 --- /dev/null +++ b/rsyslog/etc/default/rsyslog @@ -0,0 +1,8 @@ +# Options for rsyslogd +# -m 0 disables 'MARK' messages (deprecated, only used in compat mode < 3) +# -r enables logging from remote machines (deprecated, only used in compat mode < 3) +# -x disables DNS lookups on messages received with -r +# -c compatibility mode +# See rsyslogd(8) for more details +RSYSLOGD_OPTIONS="-c5" + diff --git a/rsyslog/etc/init.d/dmesg b/rsyslog/etc/init.d/dmesg new file mode 120000 index 0000000..0138977 --- /dev/null +++ b/rsyslog/etc/init.d/dmesg @@ -0,0 +1 @@ +/lib/init/upstart-job \ No newline at end of file diff --git a/rsyslog/etc/init.d/rsyslog b/rsyslog/etc/init.d/rsyslog new file mode 120000 index 0000000..0138977 --- /dev/null +++ b/rsyslog/etc/init.d/rsyslog @@ -0,0 +1 @@ +/lib/init/upstart-job \ No newline at end of file diff --git a/rsyslog/etc/init/dmesg.conf b/rsyslog/etc/init/dmesg.conf new file mode 100644 index 0000000..3331d14 --- /dev/null +++ b/rsyslog/etc/init/dmesg.conf @@ -0,0 +1,14 @@ +# dmesg - save kernel messages +# +# This task saves the initial kernel message log. + +description "save kernel messages" + +start on runlevel [2345] + +task +script + savelog -q -p -c 5 /var/log/dmesg + dmesg -s 524288 > /var/log/dmesg + chgrp adm /var/log/dmesg +end script diff --git a/rsyslog/etc/init/rsyslog.conf b/rsyslog/etc/init/rsyslog.conf new file mode 100644 index 0000000..4d4ea4e --- /dev/null +++ b/rsyslog/etc/init/rsyslog.conf @@ -0,0 +1,21 @@ +# rsyslog - system logging daemon +# +# rsyslog is an enhanced multi-threaded replacement for the traditional +# syslog daemon, logging messages from applications + +description "system logging daemon" + +start on filesystem +stop on runlevel [06] + +expect fork +respawn + +pre-start script + /lib/init/apparmor-profile-load usr.sbin.rsyslogd +end script + +script + . /etc/default/rsyslog + exec rsyslogd $RSYSLOGD_OPTIONS +end script diff --git a/rsyslog/etc/logcheck/ignore.d.server/rsyslog b/rsyslog/etc/logcheck/ignore.d.server/rsyslog new file mode 100644 index 0000000..171f20e --- /dev/null +++ b/rsyslog/etc/logcheck/ignore.d.server/rsyslog @@ -0,0 +1,5 @@ +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ kernel: imklog [0-9.]+, log source = /proc/kmsg started.$ +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ kernel: Kernel logging \(proc\) stopped.$ +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ rsyslogd: \[origin software="rsyslogd" swVersion="[0-9.]+" x-pid="[0-9]+" x-info="http://www.rsyslog.com"\] start$ +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ rsyslogd: \[origin software="rsyslogd" swVersion="[0-9.]+" x-pid="[0-9]+" x-info="http://www.rsyslog.com"\] exiting on signal [0-9]+.$ +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ rsyslogd: \[origin software="rsyslogd" swVersion="[0-9.]+" x-pid="[0-9]+" x-info="http://www.rsyslog.com"\] rsyslogd was HUPed$ diff --git a/rsyslog/etc/logrotate.d/rsyslog b/rsyslog/etc/logrotate.d/rsyslog new file mode 100644 index 0000000..bb2ba16 --- /dev/null +++ b/rsyslog/etc/logrotate.d/rsyslog @@ -0,0 +1,37 @@ +/var/log/syslog +{ + rotate 7 + daily + missingok + notifempty + delaycompress + compress + postrotate + reload rsyslog >/dev/null 2>&1 || true + endscript +} + +/var/log/mail.info +/var/log/mail.warn +/var/log/mail.err +/var/log/mail.log +/var/log/daemon.log +/var/log/kern.log +/var/log/auth.log +/var/log/user.log +/var/log/lpr.log +/var/log/cron.log +/var/log/debug +/var/log/messages +{ + rotate 4 + weekly + missingok + notifempty + compress + delaycompress + sharedscripts + postrotate + reload rsyslog >/dev/null 2>&1 || true + endscript +} diff --git a/rsyslog/etc/rsyslog.conf b/rsyslog/etc/rsyslog.conf new file mode 100644 index 0000000..c449e61 --- /dev/null +++ b/rsyslog/etc/rsyslog.conf @@ -0,0 +1,59 @@ +# /etc/rsyslog.conf Configuration file for rsyslog. +# +# For more information see +# /usr/share/doc/rsyslog-doc/html/rsyslog_conf.html +# +# Default logging rules can be found in /etc/rsyslog.d/50-default.conf + + +################# +#### MODULES #### +################# + +$ModLoad imuxsock # provides support for local system logging +$ModLoad imklog # provides kernel logging support (previously done by rklogd) +#$ModLoad immark # provides --MARK-- message capability + +# provides UDP syslog reception +#$ModLoad imudp +#$UDPServerRun 514 + +# provides TCP syslog reception +#$ModLoad imtcp +#$InputTCPServerRun 514 + + +########################### +#### GLOBAL DIRECTIVES #### +########################### + +# +# Use traditional timestamp format. +# To enable high precision timestamps, comment out the following line. +# +$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat + +# Filter duplicated messages +$RepeatedMsgReduction on + +# +# Set the default permissions for all log files. +# +$FileOwner syslog +$FileGroup adm +$FileCreateMode 0640 +$DirCreateMode 0755 +$Umask 0022 +$PrivDropToUser syslog +$PrivDropToGroup syslog + +# +# Where to place spool files +# +$WorkDirectory /var/spool/rsyslog + +# +# Include all config files in /etc/rsyslog.d/ +# +$IncludeConfig /etc/rsyslog.d/*.conf + diff --git a/rsyslog/etc/systemd/system/multi-user.target.wants/rsyslog.service b/rsyslog/etc/systemd/system/multi-user.target.wants/rsyslog.service new file mode 120000 index 0000000..c3fe73f --- /dev/null +++ b/rsyslog/etc/systemd/system/multi-user.target.wants/rsyslog.service @@ -0,0 +1 @@ +/lib/systemd/system/rsyslog.service \ No newline at end of file diff --git a/rsyslog/lib/systemd/system/rsyslog.service b/rsyslog/lib/systemd/system/rsyslog.service new file mode 100644 index 0000000..bd8a26a --- /dev/null +++ b/rsyslog/lib/systemd/system/rsyslog.service @@ -0,0 +1,11 @@ +[Unit] +Description=System Logging Service + +[Service] +ExecStartPre=/bin/systemctl stop systemd-kmsg-syslogd.service +ExecStart=/usr/sbin/rsyslogd -n -c5 +Sockets=syslog.socket +StandardOutput=null + +[Install] +WantedBy=multi-user.target diff --git a/rsyslog/rsyslog_5.8.6-1ubuntu8_amd64.deb b/rsyslog/rsyslog_5.8.6-1ubuntu8_amd64.deb new file mode 100644 index 0000000..960ed68 Binary files /dev/null and b/rsyslog/rsyslog_5.8.6-1ubuntu8_amd64.deb differ diff --git a/rsyslog/usr/lib/rsyslog/imfile.so b/rsyslog/usr/lib/rsyslog/imfile.so new file mode 100644 index 0000000..2b6a9e1 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/imfile.so differ diff --git a/rsyslog/usr/lib/rsyslog/imklog.so b/rsyslog/usr/lib/rsyslog/imklog.so new file mode 100644 index 0000000..485a920 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/imklog.so differ diff --git a/rsyslog/usr/lib/rsyslog/immark.so b/rsyslog/usr/lib/rsyslog/immark.so new file mode 100644 index 0000000..0b429f1 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/immark.so differ diff --git a/rsyslog/usr/lib/rsyslog/impstats.so b/rsyslog/usr/lib/rsyslog/impstats.so new file mode 100644 index 0000000..70fc9ab Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/impstats.so differ diff --git a/rsyslog/usr/lib/rsyslog/imtcp.so b/rsyslog/usr/lib/rsyslog/imtcp.so new file mode 100644 index 0000000..a30359f Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/imtcp.so differ diff --git a/rsyslog/usr/lib/rsyslog/imudp.so b/rsyslog/usr/lib/rsyslog/imudp.so new file mode 100644 index 0000000..2a99478 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/imudp.so differ diff --git a/rsyslog/usr/lib/rsyslog/imuxsock.so b/rsyslog/usr/lib/rsyslog/imuxsock.so new file mode 100644 index 0000000..c9febb3 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/imuxsock.so differ diff --git a/rsyslog/usr/lib/rsyslog/lmnet.so b/rsyslog/usr/lib/rsyslog/lmnet.so new file mode 100644 index 0000000..1ba05cc Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/lmnet.so differ diff --git a/rsyslog/usr/lib/rsyslog/lmnetstrms.so b/rsyslog/usr/lib/rsyslog/lmnetstrms.so new file mode 100644 index 0000000..c43b863 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/lmnetstrms.so differ diff --git a/rsyslog/usr/lib/rsyslog/lmnsd_ptcp.so b/rsyslog/usr/lib/rsyslog/lmnsd_ptcp.so new file mode 100644 index 0000000..b5d4a2c Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/lmnsd_ptcp.so differ diff --git a/rsyslog/usr/lib/rsyslog/lmregexp.so b/rsyslog/usr/lib/rsyslog/lmregexp.so new file mode 100644 index 0000000..257c498 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/lmregexp.so differ diff --git a/rsyslog/usr/lib/rsyslog/lmstrmsrv.so b/rsyslog/usr/lib/rsyslog/lmstrmsrv.so new file mode 100644 index 0000000..fc43a4c Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/lmstrmsrv.so differ diff --git a/rsyslog/usr/lib/rsyslog/lmtcpclt.so b/rsyslog/usr/lib/rsyslog/lmtcpclt.so new file mode 100644 index 0000000..9b9f038 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/lmtcpclt.so differ diff --git a/rsyslog/usr/lib/rsyslog/lmtcpsrv.so b/rsyslog/usr/lib/rsyslog/lmtcpsrv.so new file mode 100644 index 0000000..dd033e9 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/lmtcpsrv.so differ diff --git a/rsyslog/usr/lib/rsyslog/lmzlibw.so b/rsyslog/usr/lib/rsyslog/lmzlibw.so new file mode 100644 index 0000000..9f765d4 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/lmzlibw.so differ diff --git a/rsyslog/usr/lib/rsyslog/ommail.so b/rsyslog/usr/lib/rsyslog/ommail.so new file mode 100644 index 0000000..0b119b8 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/ommail.so differ diff --git a/rsyslog/usr/lib/rsyslog/omprog.so b/rsyslog/usr/lib/rsyslog/omprog.so new file mode 100644 index 0000000..ee76df5 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/omprog.so differ diff --git a/rsyslog/usr/lib/rsyslog/omruleset.so b/rsyslog/usr/lib/rsyslog/omruleset.so new file mode 100644 index 0000000..3fd8908 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/omruleset.so differ diff --git a/rsyslog/usr/lib/rsyslog/pmaixforwardedfrom.so b/rsyslog/usr/lib/rsyslog/pmaixforwardedfrom.so new file mode 100644 index 0000000..fe53219 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/pmaixforwardedfrom.so differ diff --git a/rsyslog/usr/lib/rsyslog/pmcisconames.so b/rsyslog/usr/lib/rsyslog/pmcisconames.so new file mode 100644 index 0000000..d9a5cc8 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/pmcisconames.so differ diff --git a/rsyslog/usr/lib/rsyslog/pmlastmsg.so b/rsyslog/usr/lib/rsyslog/pmlastmsg.so new file mode 100644 index 0000000..f93ab5b Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/pmlastmsg.so differ diff --git a/rsyslog/usr/lib/rsyslog/pmrfc3164sd.so b/rsyslog/usr/lib/rsyslog/pmrfc3164sd.so new file mode 100644 index 0000000..dfac55b Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/pmrfc3164sd.so differ diff --git a/rsyslog/usr/lib/rsyslog/pmsnare.so b/rsyslog/usr/lib/rsyslog/pmsnare.so new file mode 100644 index 0000000..1f2b332 Binary files /dev/null and b/rsyslog/usr/lib/rsyslog/pmsnare.so differ diff --git a/rsyslog/usr/sbin/rsyslogd b/rsyslog/usr/sbin/rsyslogd new file mode 100755 index 0000000..89db6f6 Binary files /dev/null and b/rsyslog/usr/sbin/rsyslogd differ diff --git a/rsyslog/usr/share/doc/rsyslog/AUTHORS b/rsyslog/usr/share/doc/rsyslog/AUTHORS new file mode 100644 index 0000000..8a3b556 --- /dev/null +++ b/rsyslog/usr/share/doc/rsyslog/AUTHORS @@ -0,0 +1,14 @@ +Thankfully, we have had so many contributions that maintaining the +AUTHORS file would be a big task in itself. On the other hand, we +now use git and I make sure that each author receives proper credit +for patches I receive. + +So rather than trying to reproduce the git author log here (and +often making mistakes in that), I invite you to check the git logs. +You can also do this online at + +http://git.adiscon.com/?p=rsyslog.git;a=summary + +Rainer Gerhards + +lead rsyslog developer diff --git a/rsyslog/usr/share/doc/rsyslog/NEWS.Debian.gz b/rsyslog/usr/share/doc/rsyslog/NEWS.Debian.gz new file mode 100644 index 0000000..2624eba Binary files /dev/null and b/rsyslog/usr/share/doc/rsyslog/NEWS.Debian.gz differ diff --git a/rsyslog/usr/share/doc/rsyslog/README.Debian b/rsyslog/usr/share/doc/rsyslog/README.Debian new file mode 100644 index 0000000..2a7dfda --- /dev/null +++ b/rsyslog/usr/share/doc/rsyslog/README.Debian @@ -0,0 +1,83 @@ +rsyslog for Debian +================== + +Configuration file(s) +--------------------- +The default configuration file for rsyslog is /etc/rsyslog.conf. + +Its format is based on the standard syslog.conf format. As rsyslog +has a lot more advanced features than sysklogd, it extends this format +with special configuration directives which all start with the '$' +prefix. See the rsyslogd(8) and rsyslog.conf(5) man pages for further +information or install the rsyslog-doc package which provides much +more detailed documentation. + +The Debian default configuration for rsyslog uses: + + $IncludeConfig /etc/rsyslog.d/*.conf + +That means, all configuration files in /etc/rsyslog.d/ with a .conf file +extension are read by rsyslog. This way the rsyslog configuration can be +extended easily (either by package maintainers or local administrators). + + +Command line arguments, modules and compatibility levels +-------------------------------------------------------- +With version 3, rsyslog became much more modular. A lot of +functionality has been moved into loadable modules, e.g. udp reception, +which must be loaded explicitly. +To keep compatibility with sysklogd, rsyslog introduced the concept of +compatibility modes, which can be selected with the -c command line +argument. E.g. with -c0, rsyslog becomes command line compatible with +sysklogd and loads a default set of modules automatically. + +The default in Debian is -c3, i.e. command line arguments like -r or +-m 0 have no effect and instead have to be configured via special +configuration directives in rsyslog.conf. + +The options that are passed to rsyslog can be changed easily by +modifying the RSYSLOGD_OPTIONS variable in /etc/default/rsyslog. + +If you have an existing, customized syslog.conf, it is recommended that +you migrate your custom logging rules to rsyslog.conf or into a separate +configuration file in /etc/rsyslog.d (in most cases it should be as +simple as copy&paste). + +To read more about this topic please see +/usr/share/doc/rsyslog-doc/html/v3compatibility.html or +http://www.rsyslog.com/doc-v3compatibility.html. + + +Log rotation +------------ +Rsyslog uses the logrotate(8) utilitiy to rotate the standard Debian +log files. The configuration file can be found at +/etc/logrotate.d/rsyslog. + +The rotation cycle starts with .1, as this is the logrotate default. +In contrast to sysklogd, which starts with .0. + +When upgrading from sysklogd, the postinst script will automatically +rotate the existing standard Debian log files, if it is safe to do so +(i.e. only if .0 is newer than .1). + + +Forwarding messages to sysklogd +------------------------------- +If you are forwarding messages from a rsyslog client to a sysklogd +server, it can lead to doubled hostnames in the syslog message on the +server side. The reason is a limitation in sysklogd which does not parse +the hostname in the syslog header (as defined by RFC 3164). See Debian +bug #514051 for more details. + +A simple workaround in rsyslog is, to define a custom template, which +does not include the hostname: + + $template sysklogd,"<%PRI%>%TIMESTAMP% %syslogtag%%msg%" + *.* @remote-host;sysklogd + +This creates a template called "sysklogd" and assigns it to the forward +rule when logging to "remote-host". + + + -- Michael Biebl Sat, 07 Feb 2009 18:54:37 +0100 diff --git a/rsyslog/usr/share/doc/rsyslog/changelog.Debian.gz b/rsyslog/usr/share/doc/rsyslog/changelog.Debian.gz new file mode 100644 index 0000000..602ce3e Binary files /dev/null and b/rsyslog/usr/share/doc/rsyslog/changelog.Debian.gz differ diff --git a/rsyslog/usr/share/doc/rsyslog/copyright b/rsyslog/usr/share/doc/rsyslog/copyright new file mode 100644 index 0000000..723fdf2 --- /dev/null +++ b/rsyslog/usr/share/doc/rsyslog/copyright @@ -0,0 +1,39 @@ +This package was debianized by Michael Biebl on +Wed, 18 Jul 2007 16:22:23 +0200. + +It was downloaded from http://www.rsyslog.com + +Upstream Authors: + + Rainer Gerhards , Adiscon GmbH + Michael Meckelein , Adiscon GmbH + +Copyright: + + Copyright (C) 1995,1996 Dr. G.W. Wettstein + Copyright (C) 1996 Enjellic Systems Development + Copyright (C) 1995 Martin Schulze + Copyright (C) 2003-2007 Rainer Gerhards and Adiscon GmbH + +License: + + This package is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This package is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this package; if not, write to the Free Software + Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA + +On Debian systems, the complete text of the GNU General +Public License can be found in `/usr/share/common-licenses/GPL'. + +The Debian packaging is (C) 2007, Michael Biebl and +is licensed under the GPL, see above. + diff --git a/rsyslog/usr/share/lintian/overrides/rsyslog b/rsyslog/usr/share/lintian/overrides/rsyslog new file mode 100644 index 0000000..f29fa4a --- /dev/null +++ b/rsyslog/usr/share/lintian/overrides/rsyslog @@ -0,0 +1 @@ +rsyslog: init.d-script-missing-dependency-on-remote_fs /etc/init.d/rsyslog: required-stop diff --git a/rsyslog/usr/share/man/man5/rsyslog.conf.5.gz b/rsyslog/usr/share/man/man5/rsyslog.conf.5.gz new file mode 100644 index 0000000..0f0f716 Binary files /dev/null and b/rsyslog/usr/share/man/man5/rsyslog.conf.5.gz differ diff --git a/rsyslog/usr/share/man/man8/rsyslogd.8.gz b/rsyslog/usr/share/man/man8/rsyslogd.8.gz new file mode 100644 index 0000000..c55f292 Binary files /dev/null and b/rsyslog/usr/share/man/man8/rsyslogd.8.gz differ diff --git a/rsyslog/usr/share/rsyslog/50-default.conf b/rsyslog/usr/share/rsyslog/50-default.conf new file mode 100644 index 0000000..d672d83 --- /dev/null +++ b/rsyslog/usr/share/rsyslog/50-default.conf @@ -0,0 +1,68 @@ +# Default rules for rsyslog. +# +# For more information see rsyslog.conf(5) and /etc/rsyslog.conf + +# +# First some standard log files. Log by facility. +# +auth,authpriv.* /var/log/auth.log +*.*;auth,authpriv.none -/var/log/syslog +#cron.* /var/log/cron.log +#daemon.* -/var/log/daemon.log +kern.* -/var/log/kern.log +#lpr.* -/var/log/lpr.log +mail.* -/var/log/mail.log +#user.* -/var/log/user.log + +# +# Logging for the mail system. Split it up so that +# it is easy to write scripts to parse these files. +# +#mail.info -/var/log/mail.info +#mail.warn -/var/log/mail.warn +mail.err /var/log/mail.err + +# +# Logging for INN news system. +# +news.crit /var/log/news/news.crit +news.err /var/log/news/news.err +news.notice -/var/log/news/news.notice + +# +# Some "catch-all" log files. +# +#*.=debug;\ +# auth,authpriv.none;\ +# news.none;mail.none -/var/log/debug +#*.=info;*.=notice;*.=warn;\ +# auth,authpriv.none;\ +# cron,daemon.none;\ +# mail,news.none -/var/log/messages + +# +# Emergencies are sent to everybody logged in. +# +*.emerg :omusrmsg:* + +# +# I like to have messages displayed on the console, but only on a virtual +# console I usually leave idle. +# +#daemon,mail.*;\ +# news.=crit;news.=err;news.=notice;\ +# *.=debug;*.=info;\ +# *.=notice;*.=warn /dev/tty8 + +# The named pipe /dev/xconsole is for the `xconsole' utility. To use it, +# you must invoke `xconsole' with the `-file' option: +# +# $ xconsole -file /dev/xconsole [...] +# +# NOTE: adjust the list below, or you'll go crazy if you have a reasonably +# busy site.. +# +daemon.*;mail.*;\ + news.err;\ + *.=debug;*.=info;\ + *.=notice;*.=warn |/dev/xconsole