Skip to main content
Unix & Linux

Questions tagged [syslog]

Ask Question

syslog is a standard (RFC 5424) for message logging. Use this tag for syslog logging related messages. For generic logging messages use [logging] instead

442 questions
Newest Active Bountied Unanswered
0 votes
1 answer
58 views

How do I change the date/time format in syslog-ng from `mmm [d]d hh:mm:ss` to `yyyy-mm-dd hh:mm:ss`?

I noticed that the default datetime format for logs in /var/log/messages is mmm [d]d hh:mm:ss, for example: Jan 4 03:46:50 1.2.3.4 ntpclient[6952]: Failed resolving address to hostname pool.ntp.org: ...
skeetastax's user avatar
skeetastax
  • 153
0 votes
2 answers
41 views

How do I check which conf file was loaded by syslog-ng when starting?

I am running syslog-ng on debian. How do I check which conf file was loaded upon startup? Neither systemctl status syslog-ng nor systemctl show syslog-ng tell me.
skeetastax's user avatar
skeetastax
  • 153
0 votes
1 answer
67 views

rsyslog variable from mmnormalize as part of omfile filename

I have a log line that looks like this: May 20 10:25:42 192.168.20.100 Timestamp="2024-05-20 10:25:42",LogId="535666280",NodeId="192.168.1.100",Facility="Packet ...
azzid's user avatar
azzid
  • 1,000
0 votes
0 answers
18 views

AuditD - tuning out parent and children

I'm reading over the AuditD readmes and I see how you can use filters but is there a way that you can tune out a parent and any activity they create along with their children processes? For example, I ...
Jason's user avatar
Jason
  • 1,744
-1 votes
1 answer
56 views

How to preserve log contents across reboots?

As far as I can tell, syslogd in its default configuration throws away all log data on reboot. I have observed this data on Raspbian (Debian Linux-based) and on OPNsense (FreeBSD-based). From my point ...
user149408's user avatar
user149408
  • 1,343
0 votes
0 answers
15 views

rsyslog service mulfuction after server reboot

We recently faced an issue with rsyslog service on CentOS-7. This server was running for like 2-3 years continuously and we rebooted it last night. Since then rsyslogs are not written. Tried steps ...
Sachith Muhandiram's user avatar
Sachith Muhandiram
  • 183
-1 votes
1 answer
54 views

Portable logging from Python?

I am writing a small plugin for Postfix using python and want to it to emit logging messages. I am not particularly familiar with python and was advised to use loguru. This was certainly easy when I ...
symcbean's user avatar
symcbean
  • 5,821
0 votes
1 answer
17 views

rsyslogd v3.x.x unexpectedly closes write connection to named pipe target

I've configured rsyslog to forward certain log messages to a named pipe /tmp/logger.pipe. I then have a separate process reading from the named pipe. Relevant section from /etc/rsyslog.conf # Remote ...
Izzo's user avatar
Izzo
  • 971
2 votes
1 answer
225 views

pfSense (FreeBSD 14.0) - Prometheus Node Exporter gives log errors - fix or suppress in log

On pfSense, I've enabled Prometheus Node Exporter, but it gives the following log errors each 15 seconds: Feb 15 09:53:57 vault node_exporter[25559]: ts=2024-02-15T08:53:57.164Z caller=collector.go:...
Artur Meinild's user avatar
Artur Meinild
  • 772
0 votes
0 answers
41 views

What does rsyslog do if it fills up a named pipe?

I'm working on a C application that is intended to monitor and process the output of rsyslog. My research shows that a way to do this is to create a named pipe and then create a new syslog target that ...
Izzo's user avatar
Izzo
  • 971
0 votes
2 answers
108 views

Root partition is running out of disk space due to too large syslog files

This is occurring while backing up whole drive with rsync. I'm trying to sync two large hard drives as a backup and I'm doing so exactly as described here using the Grsync GUI. While doing so I get ...
mYnDstrEAm's user avatar
mYnDstrEAm
  • 4,398
1 vote
0 answers
1k views

PAM - Disabling "check pass; user unknown" syslog messages

TLDR: We use PAM with SSHD. CentOS and Ubuntu exist in the environment. For every SSHD failure of an unknown user, it creates two messages. One of the messages doesn't provide the unknown username and ...
Top-Lunch-7931's user avatar
Top-Lunch-7931
  • 31
0 votes
0 answers
323 views

`smartctl` and `smartd` commands not working

I have been receiving hard disk warnings from the smartd daemon for a while now (every 24 hours), saying that my error logs have increased. I have been trying to examine this by checking my log files, ...
tobibox's user avatar
tobibox
  • 1
0 votes
1 answer
246 views

CAN'T open syslog

I had read that syslog is placed in a /var/log directory. But i can't open it in spite of the directory in PATH included. lm@debian:~$ echo $PATH /usr/local/bin:/usr/bin:/bin:/usr/local/games:/...
ant's user avatar
ant
  • 29
0 votes
1 answer
2k views

Logrotation is not rotating logs each day

I am new to log rotation and have a syslog server that have been setup to recieve firewall logs over 514. Now, the firewall is generating A LOT of data, ~600-800GB/day and the servers capacity is 1TB. ...
phil_sw's user avatar
phil_sw
  • 3

15 30 50 per page
1
2 3 4 5
30