1 |
scen 10/05/03 20:50:14 |
2 |
|
3 |
Modified: shb-logging.xml |
4 |
Log: |
5 |
Version 1.3, revision 1.6 of EN CVS |
6 |
|
7 |
Revision Changes Path |
8 |
1.4 xml/htdocs/doc/it/security/shb-logging.xml |
9 |
|
10 |
file : http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/doc/it/security/shb-logging.xml?rev=1.4&view=markup |
11 |
plain: http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/doc/it/security/shb-logging.xml?rev=1.4&content-type=text/plain |
12 |
diff : http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/doc/it/security/shb-logging.xml?r1=1.3&r2=1.4 |
13 |
|
14 |
Index: shb-logging.xml |
15 |
=================================================================== |
16 |
RCS file: /var/cvsroot/gentoo/xml/htdocs/doc/it/security/shb-logging.xml,v |
17 |
retrieving revision 1.3 |
18 |
retrieving revision 1.4 |
19 |
diff -u -r1.3 -r1.4 |
20 |
--- shb-logging.xml 7 Mar 2007 01:51:52 -0000 1.3 |
21 |
+++ shb-logging.xml 3 May 2010 20:50:14 -0000 1.4 |
22 |
@@ -1,5 +1,5 @@ |
23 |
<?xml version='1.0' encoding='UTF-8'?> |
24 |
-<!-- $Header: /var/cvsroot/gentoo/xml/htdocs/doc/it/security/shb-logging.xml,v 1.3 2007/03/07 01:51:52 nightmorph Exp $ --> |
25 |
+<!-- $Header: /var/cvsroot/gentoo/xml/htdocs/doc/it/security/shb-logging.xml,v 1.4 2010/05/03 20:50:14 scen Exp $ --> |
26 |
<!DOCTYPE sections SYSTEM "/dtd/book.dtd"> |
27 |
|
28 |
<!-- The content of this document is licensed under the CC-BY-SA license --> |
29 |
@@ -7,8 +7,8 @@ |
30 |
|
31 |
<sections> |
32 |
|
33 |
-<version>1.2</version> |
34 |
-<date>2005-11-25</date> |
35 |
+<version>1.3</version> |
36 |
+<date>2010-04-02</date> |
37 |
|
38 |
<section> |
39 |
<title>Introduzione</title> |
40 |
@@ -115,7 +115,7 @@ |
41 |
|
42 |
# The named pipe /dev/xconsole is for the `xconsole' utility. To use it, |
43 |
# you must invoke `xconsole' with the `-file' option: |
44 |
-# |
45 |
+# |
46 |
# $ xconsole -file /dev/xconsole [...] |
47 |
# |
48 |
# NOTE: adjust the list below, or you'll go crazy if you have a reasonably |
49 |
@@ -174,7 +174,7 @@ |
50 |
<pre caption="/usr/local/sbin/mail_pwd_failures.sh per netqmail"> |
51 |
#!/bin/sh |
52 |
echo "To: root |
53 |
-Subject:Failure (Warning: $2) |
54 |
+Subject:Failure (Warning: $2) |
55 |
$3 |
56 |
" | /var/qmail/bin/qmail-inject -f root |
57 |
</pre> |
58 |
@@ -213,13 +213,29 @@ |
59 |
</p> |
60 |
|
61 |
<pre caption="/etc/syslog-ng/syslog-ng.conf"> |
62 |
-options { chain_hostnames(off); sync(0); }; |
63 |
+options { |
64 |
+ chain_hostnames(no); |
65 |
+ |
66 |
+ <comment># The default action of syslog-ng is to log a STATS line |
67 |
+ # to the file every 10 minutes. That's pretty ugly after a while. |
68 |
+ # Change it to every 12 hours so you get a nice daily update of |
69 |
+ # how many messages syslog-ng missed (0).</comment> |
70 |
+ stats_freq(43200); |
71 |
+}; |
72 |
+ |
73 |
+ |
74 |
+ |
75 |
+source src { |
76 |
+ |
77 |
+ unix-stream("/dev/log" max-connections(256)); |
78 |
+ |
79 |
+ internal(); |
80 |
+ |
81 |
+}; |
82 |
|
83 |
-#source where to read log |
84 |
-source src { unix-stream("/dev/log"); internal(); }; |
85 |
source kernsrc { file("/proc/kmsg"); }; |
86 |
|
87 |
-#define destinations |
88 |
+<comment>#define destinations</comment> |
89 |
destination authlog { file("/var/log/auth.log"); }; |
90 |
destination syslog { file("/var/log/syslog"); }; |
91 |
destination cron { file("/var/log/cron.log"); }; |
92 |
@@ -240,10 +256,16 @@ |
93 |
destination debug { file("/var/log/debug"); }; |
94 |
destination messages { file("/var/log/messages"); }; |
95 |
destination console { usertty("root"); }; |
96 |
+ |
97 |
+<comment># By default messages are logged to tty12...</comment> |
98 |
destination console_all { file("/dev/tty12"); }; |
99 |
-destination xconsole { pipe("/dev/xconsole"); }; |
100 |
|
101 |
-#create filters |
102 |
+<comment># ...if you intend to use /dev/console for programs like xconsole |
103 |
+# you can comment out the destination line above that references /dev/tty12 |
104 |
+# and uncomment the line below.</comment> |
105 |
+#destination console_all { file("/dev/console"); }; |
106 |
+ |
107 |
+<comment>#create filters</comment> |
108 |
filter f_authpriv { facility(auth, authpriv); }; |
109 |
filter f_syslog { not facility(authpriv, mail); }; |
110 |
filter f_cron { facility(cron); }; |
111 |
@@ -253,7 +275,7 @@ |
112 |
filter f_mail { facility(mail); }; |
113 |
filter f_user { facility(user); }; |
114 |
filter f_debug { not facility(auth, authpriv, news, mail); }; |
115 |
-filter f_messages { level(info..warn) |
116 |
+filter f_messages { level(info..warn) |
117 |
and not facility(auth, authpriv, mail, news); }; |
118 |
filter f_emergency { level(emerg); }; |
119 |
|
120 |
@@ -262,10 +284,10 @@ |
121 |
filter f_warn { level(warn); }; |
122 |
filter f_crit { level(crit); }; |
123 |
filter f_err { level(err); }; |
124 |
-filter f_failed { match("failed"); }; |
125 |
-filter f_denied { match("denied"); }; |
126 |
+filter f_failed { message("failed"); }; |
127 |
+filter f_denied { message("denied"); }; |
128 |
|
129 |
-#connect filter and destination |
130 |
+<comment>#connect filter and destination</comment> |
131 |
log { source(src); filter(f_authpriv); destination(authlog); }; |
132 |
log { source(src); filter(f_syslog); destination(syslog); }; |
133 |
log { source(src); filter(f_cron); destination(cron); }; |
134 |
@@ -282,7 +304,7 @@ |
135 |
log { source(src); filter(f_messages); destination(messages); }; |
136 |
log { source(src); filter(f_emergency); destination(console); }; |
137 |
|
138 |
-#default log |
139 |
+<comment>#default log</comment> |
140 |
log { source(src); destination(console_all); }; |
141 |
</pre> |