Mailinglist Archive: opensuse-security (601 mails)

< Previous Next >
Re: [suse-security] /var/log/{messages,firewall,warn}
  • From: Ralph Weichert <weichert@xxxxxxxxxxxxxxxxxxx>
  • Date: 02 Aug 2000 19:05:03 +0200
  • Message-id: <wdd7jrh9vk.fsf@xxxxxxxxxxxxxxxxxxxxxxxxx>
Steffen Dettmer <steffen@xxxxxxx> writes:

> I would suggest to name this file "kernel" and not firewall,
> since IMHO "firewall" is misleading here. In a file firewall I
> wouldn't expect Harddisk I/O errors and so on. It's a pitty that
> syslog is to silly to sort by the tag field, but you could make a
> little (i.e. perl-) Script or some program doing this. Syslogd is
> able to write down to a named pipe, that could be read out be
> such a script. What do you think?

You could also have a look at syslog-ng, which can filter messages by
various criteria (e. g. the message text itself). You can find it at
http://www.balabit.hu/products/syslog-ng/

Regards,
Ralph

< Previous Next >