Re: Redhat Syslog not working - Unix gurus help !

---

• From: dtushingham@xxxxxxxxx
• Date: 27 Mar 2006 10:43:46 -0800

---

[root@binglradius1 init.d]# ./syslog stop
Shutting down kernel logger: [ OK ]
Shutting down system logger: [ OK ]
[root@binglradius1 init.d]# ./syslog start
Starting system logger: [ OK ]
Starting kernel logger: [ OK ]
[root@binglradius1 init.d]# ps -auwx | grep syslogd
Warning: bad syntax, perhaps a bogus '-'? See
/usr/share/doc/procps-3.2.3/FAQ
root 29976 0.0 0.0 1540 624 ? Ss 13:40 0:00 syslogd
-m 0
root 29995 0.0 0.0 4648 720 pts/2 R+ 13:40 0:00 grep
syslogd

# syslog -d

% snipped some out put %<

logmsg: syslog.info<46>, flags 4, from binglradius1, msg syslogd 1.4.1:
restart.
Called fprintlog, logging to FILE /var/log/messages
Called fprintlog, logging to FORW 10.3.3.26
syslogd: restarted.
Debugging disabled, SIGUSR1 to turn on debugging.


# more /var/log/messages
[root@binglradius1 init.d]# more /var/log/messages
Mar 27 13:37:52 binglradius1 syslogd 1.4.1: restart.
Mar 27 13:37:54 binglradius1 kernel: audit(1143484674.449:3): avc:
denied { write } for pid=653 comm="minilogd" name
="log" dev=tmpfs ino=988891 scontext=user_u:system_r:syslogd_t
tcontext=root:object_r:device_t tclass=sock_file
Mar 27 13:39:23 binglradius1 exiting on signal 2

I want to test this so I log in as a user and su and enter the wrong
password, nothing is logged to /var/log/message.

By the way the syslog server is all good, other things are logging to
it at the moment.
It's a special commercial syslog server box.

Any thoughts ?

.

---

• Follow-Ups:
  • Re: Redhat Syslog not working - Unix gurus help !
    • From: dnoyeB

• References:
  • Redhat Syslog not working - Unix gurus help !
    • From: dtushingham
  • Re: Redhat Syslog not working - Unix gurus help !
    • From: Greg Hackney

• Prev by Date: Re: where to find legacy rpm and apt
• Next by Date: Re: help adding start and shutdown script
• Previous by thread: Re: Redhat Syslog not working - Unix gurus help !
• Next by thread: Re: Redhat Syslog not working - Unix gurus help !
• Index(es):
  • Date
  • Thread

---

Relevant Pages RE: Logging Stops after few minutes ... are you sure that syslogd stops working after only 2 ... Syslogd only chews on the processor when it has something to do. ... If you're certain that it isn't logging events that it should: ... If you look at my FTP command it should ... (freebsd-questions) Re: syslogd question (modifying syslogd.c) ... Solaris seems to have more feature-full logging facilities. ... And in 'syslogd': ... by an identifier in the following format: ... In syslog, the logging priority ... (RedHat) Re: Logging TCP events ... sending those events to syslogd. ... syslogd is a relatively slow logging mechanism, ... Syslog-NG can use TCP connectivity (I use it to SSH tunnel logging ... either the IPTABLES definitions or if doing the TCPDUMP, ... (comp.security.firewalls) Re: remote syslog ... To enable this [network logging on the server] you have to specify the ... The default behavior is that syslogd ... (Fedora) Re: syslogd question (modifying syslogd.c) ... > man syslogd: ... > logging and for the STREAMS error logging and event tracing processes" ... > to set the priority. ... (Fedora)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

linux.derkeiler.com  > Newsgroups  > linux.redhat  > 2006-03