| 1 |
scen 10/05/03 20:50:14 |
| 2 |
|
| 3 |
Modified: shb-logging.xml |
| 4 |
Log: |
| 5 |
Version 1.3, revision 1.6 of EN CVS |
| 6 |
|
| 7 |
Revision Changes Path |
| 8 |
1.4 xml/htdocs/doc/it/security/shb-logging.xml |
| 9 |
|
| 10 |
file : http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/doc/it/security/shb-logging.xml?rev=1.4&view=markup |
| 11 |
plain: http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/doc/it/security/shb-logging.xml?rev=1.4&content-type=text/plain |
| 12 |
diff : http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/doc/it/security/shb-logging.xml?r1=1.3&r2=1.4 |
| 13 |
|
| 14 |
Index: shb-logging.xml |
| 15 |
=================================================================== |
| 16 |
RCS file: /var/cvsroot/gentoo/xml/htdocs/doc/it/security/shb-logging.xml,v |
| 17 |
retrieving revision 1.3 |
| 18 |
retrieving revision 1.4 |
| 19 |
diff -u -r1.3 -r1.4 |
| 20 |
--- shb-logging.xml 7 Mar 2007 01:51:52 -0000 1.3 |
| 21 |
+++ shb-logging.xml 3 May 2010 20:50:14 -0000 1.4 |
| 22 |
@@ -1,5 +1,5 @@ |
| 23 |
<?xml version='1.0' encoding='UTF-8'?> |
| 24 |
-<!-- $Header: /var/cvsroot/gentoo/xml/htdocs/doc/it/security/shb-logging.xml,v 1.3 2007/03/07 01:51:52 nightmorph Exp $ --> |
| 25 |
+<!-- $Header: /var/cvsroot/gentoo/xml/htdocs/doc/it/security/shb-logging.xml,v 1.4 2010/05/03 20:50:14 scen Exp $ --> |
| 26 |
<!DOCTYPE sections SYSTEM "/dtd/book.dtd"> |
| 27 |
|
| 28 |
<!-- The content of this document is licensed under the CC-BY-SA license --> |
| 29 |
@@ -7,8 +7,8 @@ |
| 30 |
|
| 31 |
<sections> |
| 32 |
|
| 33 |
-<version>1.2</version> |
| 34 |
-<date>2005-11-25</date> |
| 35 |
+<version>1.3</version> |
| 36 |
+<date>2010-04-02</date> |
| 37 |
|
| 38 |
<section> |
| 39 |
<title>Introduzione</title> |
| 40 |
@@ -115,7 +115,7 @@ |
| 41 |
|
| 42 |
# The named pipe /dev/xconsole is for the `xconsole' utility. To use it, |
| 43 |
# you must invoke `xconsole' with the `-file' option: |
| 44 |
-# |
| 45 |
+# |
| 46 |
# $ xconsole -file /dev/xconsole [...] |
| 47 |
# |
| 48 |
# NOTE: adjust the list below, or you'll go crazy if you have a reasonably |
| 49 |
@@ -174,7 +174,7 @@ |
| 50 |
<pre caption="/usr/local/sbin/mail_pwd_failures.sh per netqmail"> |
| 51 |
#!/bin/sh |
| 52 |
echo "To: root |
| 53 |
-Subject:Failure (Warning: $2) |
| 54 |
+Subject:Failure (Warning: $2) |
| 55 |
$3 |
| 56 |
" | /var/qmail/bin/qmail-inject -f root |
| 57 |
</pre> |
| 58 |
@@ -213,13 +213,29 @@ |
| 59 |
</p> |
| 60 |
|
| 61 |
<pre caption="/etc/syslog-ng/syslog-ng.conf"> |
| 62 |
-options { chain_hostnames(off); sync(0); }; |
| 63 |
+options { |
| 64 |
+ chain_hostnames(no); |
| 65 |
+ |
| 66 |
+ <comment># The default action of syslog-ng is to log a STATS line |
| 67 |
+ # to the file every 10 minutes. That's pretty ugly after a while. |
| 68 |
+ # Change it to every 12 hours so you get a nice daily update of |
| 69 |
+ # how many messages syslog-ng missed (0).</comment> |
| 70 |
+ stats_freq(43200); |
| 71 |
+}; |
| 72 |
+ |
| 73 |
+ |
| 74 |
+ |
| 75 |
+source src { |
| 76 |
+ |
| 77 |
+ unix-stream("/dev/log" max-connections(256)); |
| 78 |
+ |
| 79 |
+ internal(); |
| 80 |
+ |
| 81 |
+}; |
| 82 |
|
| 83 |
-#source where to read log |
| 84 |
-source src { unix-stream("/dev/log"); internal(); }; |
| 85 |
source kernsrc { file("/proc/kmsg"); }; |
| 86 |
|
| 87 |
-#define destinations |
| 88 |
+<comment>#define destinations</comment> |
| 89 |
destination authlog { file("/var/log/auth.log"); }; |
| 90 |
destination syslog { file("/var/log/syslog"); }; |
| 91 |
destination cron { file("/var/log/cron.log"); }; |
| 92 |
@@ -240,10 +256,16 @@ |
| 93 |
destination debug { file("/var/log/debug"); }; |
| 94 |
destination messages { file("/var/log/messages"); }; |
| 95 |
destination console { usertty("root"); }; |
| 96 |
+ |
| 97 |
+<comment># By default messages are logged to tty12...</comment> |
| 98 |
destination console_all { file("/dev/tty12"); }; |
| 99 |
-destination xconsole { pipe("/dev/xconsole"); }; |
| 100 |
|
| 101 |
-#create filters |
| 102 |
+<comment># ...if you intend to use /dev/console for programs like xconsole |
| 103 |
+# you can comment out the destination line above that references /dev/tty12 |
| 104 |
+# and uncomment the line below.</comment> |
| 105 |
+#destination console_all { file("/dev/console"); }; |
| 106 |
+ |
| 107 |
+<comment>#create filters</comment> |
| 108 |
filter f_authpriv { facility(auth, authpriv); }; |
| 109 |
filter f_syslog { not facility(authpriv, mail); }; |
| 110 |
filter f_cron { facility(cron); }; |
| 111 |
@@ -253,7 +275,7 @@ |
| 112 |
filter f_mail { facility(mail); }; |
| 113 |
filter f_user { facility(user); }; |
| 114 |
filter f_debug { not facility(auth, authpriv, news, mail); }; |
| 115 |
-filter f_messages { level(info..warn) |
| 116 |
+filter f_messages { level(info..warn) |
| 117 |
and not facility(auth, authpriv, mail, news); }; |
| 118 |
filter f_emergency { level(emerg); }; |
| 119 |
|
| 120 |
@@ -262,10 +284,10 @@ |
| 121 |
filter f_warn { level(warn); }; |
| 122 |
filter f_crit { level(crit); }; |
| 123 |
filter f_err { level(err); }; |
| 124 |
-filter f_failed { match("failed"); }; |
| 125 |
-filter f_denied { match("denied"); }; |
| 126 |
+filter f_failed { message("failed"); }; |
| 127 |
+filter f_denied { message("denied"); }; |
| 128 |
|
| 129 |
-#connect filter and destination |
| 130 |
+<comment>#connect filter and destination</comment> |
| 131 |
log { source(src); filter(f_authpriv); destination(authlog); }; |
| 132 |
log { source(src); filter(f_syslog); destination(syslog); }; |
| 133 |
log { source(src); filter(f_cron); destination(cron); }; |
| 134 |
@@ -282,7 +304,7 @@ |
| 135 |
log { source(src); filter(f_messages); destination(messages); }; |
| 136 |
log { source(src); filter(f_emergency); destination(console); }; |
| 137 |
|
| 138 |
-#default log |
| 139 |
+<comment>#default log</comment> |
| 140 |
log { source(src); destination(console_all); }; |
| 141 |
</pre> |
Archives