1997-06-02 23:12:34 +05:30
|
|
|
# /etc/syslog.conf - Configuration file for syslogd(8)
|
1997-06-02 22:51:41 +05:30
|
|
|
#
|
2019-11-03 16:49:37 +05:30
|
|
|
# For information about the format of this file, see syslog.conf(5)
|
1997-06-02 22:51:41 +05:30
|
|
|
#
|
|
|
|
|
|
|
|
#
|
2019-11-03 16:49:37 +05:30
|
|
|
# First some standard log files. Log by facility.
|
|
|
|
#
|
|
|
|
auth,authpriv.* /var/log/auth.log
|
2022-03-29 23:44:56 +05:30
|
|
|
|
|
|
|
# Everything except debug and security tokens, re-enable debug by
|
|
|
|
# dropping '*.!=debug;', or enable /var/log/debug below
|
|
|
|
*.*;*.!=debug;\
|
|
|
|
auth,authpriv.none -/var/log/syslog
|
2019-11-03 16:49:37 +05:30
|
|
|
|
|
|
|
#cron.* /var/log/cron.log
|
|
|
|
#daemon.* -/var/log/daemon.log
|
|
|
|
kern.* -/var/log/kern.log
|
|
|
|
#lpr.* -/var/log/lpr.log
|
|
|
|
mail.* -/var/log/mail.log
|
|
|
|
#user.* -/var/log/user.log
|
1997-06-02 22:51:41 +05:30
|
|
|
|
|
|
|
#
|
2019-11-03 16:49:37 +05:30
|
|
|
# Logging for the mail system. Split it up so that
|
|
|
|
# it is easy to write scripts to parse these files.
|
|
|
|
#
|
|
|
|
#mail.info -/var/log/mail.info
|
|
|
|
#mail.warn -/var/log/mail.warn
|
|
|
|
mail.err /var/log/mail.err
|
|
|
|
#mail.*;mail.!=info -/var/log/mail
|
|
|
|
#mail,news.=info -/var/log/info
|
1997-06-02 22:51:41 +05:30
|
|
|
|
|
|
|
# The tcp wrapper loggs with mail.info, we display all
|
|
|
|
# the connections on tty12
|
|
|
|
#
|
2019-11-03 16:49:37 +05:30
|
|
|
#mail.=info /dev/tty12
|
1997-06-02 22:51:41 +05:30
|
|
|
|
|
|
|
#
|
2019-11-03 16:49:37 +05:30
|
|
|
# Some "catch-all" log files.
|
|
|
|
#
|
|
|
|
#*.=debug;\
|
|
|
|
# auth,authpriv.none;\
|
|
|
|
# news.none;mail.none -/var/log/debug
|
|
|
|
*.=info;*.=notice;*.=warn;\
|
|
|
|
auth,authpriv.none;\
|
|
|
|
cron,daemon.none;\
|
|
|
|
mail,news.none -/var/log/messages
|
1997-06-02 22:51:41 +05:30
|
|
|
|
2019-11-03 16:49:37 +05:30
|
|
|
# Store all critical eventes, except kernel logs in critical
|
1997-06-02 22:51:41 +05:30
|
|
|
#
|
2019-11-03 16:49:37 +05:30
|
|
|
#*.=crit;kern.none /var/log/critical
|
1997-06-02 22:51:41 +05:30
|
|
|
|
2019-11-03 16:49:37 +05:30
|
|
|
# Example of sending events to remote syslog server.
|
|
|
|
# All events from notice and above, except auth, authpriv
|
|
|
|
# and any kernel message are sent to server finlandia in
|
|
|
|
# RFC5424 formatted output.
|
1997-06-02 22:51:41 +05:30
|
|
|
#
|
2019-11-03 16:49:37 +05:30
|
|
|
#*.notice;auth,authpriv.none;
|
|
|
|
# kern.none\ @finlandia ;RFC5424
|
1997-06-02 22:51:41 +05:30
|
|
|
|
2019-11-03 16:49:37 +05:30
|
|
|
# Emergencies are sent to anyone logged in
|
1997-06-02 22:51:41 +05:30
|
|
|
#
|
2019-11-03 16:49:37 +05:30
|
|
|
*.=emerg *
|
1997-06-02 22:51:41 +05:30
|
|
|
|
2019-11-03 16:49:37 +05:30
|
|
|
# Priority alert and above are sent to the operator
|
1997-06-02 22:51:41 +05:30
|
|
|
#
|
2019-11-03 16:49:37 +05:30
|
|
|
#*.alert root,joey
|
2019-11-02 18:39:42 +05:30
|
|
|
|
2022-05-23 01:59:43 +05:30
|
|
|
#
|
|
|
|
# Secure mode, same as -s, none(0), on(1), full(2). When enabled
|
|
|
|
# only logging to remote syslog server possible, with full secure
|
|
|
|
# mode, not even that is possible. We default to prevent syslogd
|
|
|
|
# from opening UDP/514 and receving messages from other systems.
|
|
|
|
#
|
|
|
|
secure_mode 1
|
|
|
|
|
2019-11-02 18:39:42 +05:30
|
|
|
#
|
2019-11-03 16:49:37 +05:30
|
|
|
# Include all config files in /etc/syslog.d/
|
2019-11-02 18:39:42 +05:30
|
|
|
#
|
|
|
|
include /etc/syslog.d/*.conf
|