Re: Redhat Syslog not working - Unix gurus help !

---

• From: dnoyeB <Fake@xxxxxxxxxxxxxxxxx>
• Date: Mon, 27 Mar 2006 15:16:23 -0500

---

dtushingham@xxxxxxxxx wrote:

[root@binglradius1 init.d]# ./syslog stop
Shutting down kernel logger: [ OK ]
Shutting down system logger: [ OK ]
[root@binglradius1 init.d]# ./syslog start
Starting system logger: [ OK ]
Starting kernel logger: [ OK ]
[root@binglradius1 init.d]# ps -auwx | grep syslogd
Warning: bad syntax, perhaps a bogus '-'? See
/usr/share/doc/procps-3.2.3/FAQ
root 29976 0.0 0.0 1540 624 ? Ss 13:40 0:00 syslogd
-m 0
root 29995 0.0 0.0 4648 720 pts/2 R+ 13:40 0:00 grep
syslogd

# syslog -d

% snipped some out put %<

logmsg: syslog.info<46>, flags 4, from binglradius1, msg syslogd 1.4.1:
restart.
Called fprintlog, logging to FILE /var/log/messages
Called fprintlog, logging to FORW 10.3.3.26
syslogd: restarted.
Debugging disabled, SIGUSR1 to turn on debugging.


# more /var/log/messages
[root@binglradius1 init.d]# more /var/log/messages
Mar 27 13:37:52 binglradius1 syslogd 1.4.1: restart.
Mar 27 13:37:54 binglradius1 kernel: audit(1143484674.449:3): avc:
denied { write } for pid=653 comm="minilogd" name
="log" dev=tmpfs ino=988891 scontext=user_u:system_r:syslogd_t
tcontext=root:object_r:device_t tclass=sock_file
Mar 27 13:39:23 binglradius1 exiting on signal 2

I want to test this so I log in as a user and su and enter the wrong
password, nothing is logged to /var/log/message.

By the way the syslog server is all good, other things are logging to
it at the moment.
It's a special commercial syslog server box.

Any thoughts ?

I get info like that in var/log/secure

im on RH9 though.

--
Thank you,



"Then said I, Wisdom [is] better than strength: nevertheless the poor man's wisdom [is] despised, and his words are not heard." Ecclesiastes 9:16
.

---

• References:
  • Redhat Syslog not working - Unix gurus help !
    • From: dtushingham
  • Re: Redhat Syslog not working - Unix gurus help !
    • From: Greg Hackney
  • Re: Redhat Syslog not working - Unix gurus help !
    • From: dtushingham

• Prev by Date: Re: help adding start and shutdown script
• Next by Date: RAID easy?
• Previous by thread: Re: Redhat Syslog not working - Unix gurus help !
• Next by thread: Re-allocate /home on a diff partition
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: syslogd not logging messages from remote host ... Did you restart syslogd after making this change? ... The logger command, as well as anything using the syslogfunction on ... a message from the kernel - that's probably not relevant though. ... (comp.unix.bsd.freebsd.misc) syslogd fails to start after dist-upgrade(sarge) ... Why does syslogd need a services entry if logging is being done locally? ... services file messed up during the upgrade? ... colin@spanky~/$invoke-rc.d sysklogd restart ... (Debian-User) Re: System logging not working. ... Sep 28 12:30:35 duzi syslogd 1.3-0: restart. ... [root@duzi anton]# cat /var/run/syslogd.pid ... (comp.os.linux.setup) Re: ipmon via syslog ... Troy ... >> You need to restart syslogd. ... >>> When ever my log roles over there is a four hour lag. ... (FreeBSD-Security) Re: ipmon via syslog ... Troy ... >> You need to restart syslogd. ... >>> When ever my log roles over there is a four hour lag. ... (FreeBSD-Security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

linux.derkeiler.com  > Newsgroups  > linux.redhat  > 2006-03