Date: Thu, 03 Dec 1998 12:20:27 -0600 From: butlermd@tgn.net (Michael Butler) To: security@FreeBSD.ORG Subject: Syslog.conf setup... Message-ID: <366bd20f.60547965@mail.tgn.net>
next in thread | raw e-mail | index | archive | help
Howdy, Reading the man pages and poking at the www and experimenting leaves me still confused on *just how* I can configure my syslog to separate logs by function. They grow at different rates and I want to use newsyslog (no man page tho I have a newsyslog.cf in /etc) to manage them. I want to de-complicate my messages file. Most often I watch my logs looking at either mail, ftp, popper, or whatever so I figger this way I can filter some of the noise... wish I could tail selected multiple files too... grumble grumble I see references to entries like this with the !program but don't see the difference from: ftp.* /var/log/ftpd -- and # Save ftpd transactions along with mail and news !ftpd *.* /var/log/spoolerr -- except for the log file name >From # man syslog.conf: "...blocks of lines separated by program specifications, with each line containing two fields: the selector field which specifies the types of messages and priorities..." ....hmmmm looking again, there's a difference between *facility* and *program* and the names ftp vs ftpd are expained. Still... it ain't logging what I expect it to. Any ideas on aq&d look at my file would be appreciated. ------------------- # cat /etc/syslog.conf # level ordered list (higher to lower): # emerg, alert, crit, err, warning, notice and debug *.err;kern.debug;auth.notice;mail.crit /dev/console *.warning;kern.debug;lpr,auth.info;mail.none /var/log/messages auth.*,authpriv.* /var/log/authlog ftp.* /var/log/ftpd finger.* /var/log/fingerd mail.*,popper.none /var/log/maillog popper.* /var/log/popper lpr.* /var/log/lpd cron.* /var/log/cron telnet.* /var/log/telnet *.emerg * #*.err * #*.alert * #*.notice;auth.debug * # # Entered 10/12/95 # local6.debug /home1/xyplex/local6.msg !startslip *.* /var/log/slip.log #+@+@+@+@+@++ # Save ftpd transactions along with mail and news #!ftpd #*.* /var/log/spoolerr TIA ____________________________________________________________ Michael Butler, Texas GulfNet, | www.tgn.net 908 South Brooks, PO Box 2089 | Brazoria, TX 77422-2089 | Voice 409-798-NETT Part of the Pointecom International| FAX 409-798-6398 Network and the Global Internet | To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?366bd20f.60547965>