|
|
Sponsored Content
Operating Systems
Solaris
Solaris 10 Not Logging Anything
Post 302539966 by gadonj18 on Tuesday 19th of July 2011 08:48:44 AM
07-19-2011
|
|
10 More Discussions You Might Find Interesting
1. Solaris
I want to log tcp-wrapper events Solaris 10. I researched and saw that I could make a syslog entry in the hosts.deny, which I did below. After restarting syslog and having ssh blocking, I see nothing logging. I also do not get the email that should be generated. The file was taken from a... (2 Replies)
Discussion started by: csgonan
2 Replies
2. UNIX for Dummies Questions & Answers
Folks;
i have mysql installed on Solaris box (sparc).
The problem is under /opt/mysql/data directory, there's a log file that grows very fast & becomes a huge size.
Is there a way to stop the logging under the data directory so i don't have the issue of running out of space?
Your help will... (6 Replies)
Discussion started by: moe2266
6 Replies
3. Solaris
Hi all,
I have installed Solaris along with Xp ....The installation was successful... I get the Grub menu displaying Solaris along with Win Xp....After i select Solaris the following happens,
"Failed to initialize inband hotplug controller"
The above message repeats three times & i get the... (2 Replies)
Discussion started by: codewarrior
2 Replies
4. Solaris
Hi All,
Is there a built in function/tool in Solaris that enables creation of a history file on any connection (via telnet, ssh, rsh or nfs) to Solaris machine?
I would like to create a script that records IP Address, date and timestamp, and command excuted for any connection to a Solaris... (2 Replies)
Discussion started by: racbern
2 Replies
5. Solaris
HI all,
i Have a requirement for my customer fro tracking the ftp user sessions details.
After some google search i got to know i need to confgure xferlog for the same.Want to know how to start the xferlog in solaris 10.
Please help me :( (2 Replies)
Discussion started by: rgrandhi
2 Replies
6. Solaris
i've been able to log incoming telnet and ssh connections on solaris 9 using the following lines in /etc/syslog.conf
# Telnet connections are logged to auth.notice
auth.notice /var/adm/authlog
# An entry in /etc/profile logs all telnet connections... (2 Replies)
Discussion started by: soliberus
2 Replies
7. UNIX for Advanced & Expert Users
Hello,
We need to log the operations that specific user on Solaris 10 (SPARC) is performing on one directory and it's contents. I was able to configure solaris auditing service (auditd) and it works fine. The only problem is that auditd logs huge amount of unneeded information. We need to log... (0 Replies)
Discussion started by: +Yan
0 Replies
8. Solaris
hi all,
i want to log every thing happen in my server
is any body can provide me with articals, pdf's
is that correct to log every thing in the system
what is the most important thing i should i log it (4 Replies)
Discussion started by: corvinusbsd
4 Replies
9. Solaris
Holla!
Sorry to spam the board with all my Solaris 2.6 questions (I just found this forum). My most recent problem is that not ALL failed log-ins are getting logged in /var/log/authlog. It seems to work fine for the "su" command from a non-root user, but the actual "login" command or a desktop... (4 Replies)
Discussion started by: rrossorr
4 Replies
10. Solaris
Excuse my ignorance as I am very new to working with Solaris.
I'm looking for documentation on how to create a network log in Solaris 10 & 11. I don't wish to edit any of the logs currently the system. I simply want a log that will capture all incoming IP addresses and log them with a time-in... (8 Replies)
Discussion started by: FamousAv8er
8 Replies
LEARN ABOUT CENTOS
systemd-journald.socket
SYSTEMD-JOURNALD.SERVICE(8) systemd-journald.service SYSTEMD-JOURNALD.SERVICE(8) NAME
systemd-journald.service, systemd-journald.socket, systemd-journald - Journal service SYNOPSIS
systemd-journald.service systemd-journald.socket /usr/lib/systemd/systemd-journald DESCRIPTION
systemd-journald is a system service that collects and stores logging data. It creates and maintains structured, indexed journals based on logging information that is received from the kernel, from user processes via the libc syslog(3) call, from STDOUT/STDERR of system services or via its native API. It will implicitly collect numerous meta data fields for each log messages in a secure and unfakeable way. See systemd.journal-fields(7) for more information about the collected meta data. Log data collected by the journal is primarily text-based but can also include binary data where necessary. All objects stored in the journal can be up to 2^64-1 bytes in size. By default, the journal stores log data in /run/log/journal/. Since /run/ is volatile, log data is lost at reboot. To make the data persistent, it is sufficient to create /var/log/journal/ where systemd-journald will then store the data. systemd-journald will forward all received log messages to the AF_UNIXSOCK_DGRAM socket /run/systemd/journal/syslog, if it exists, which may be used by Unix syslog daemons to process the data further. See journald.conf(5) for information about the configuration of this service. SIGNALS
SIGUSR1 Request that journal data from /run/ is flushed to /var/ in order to make it persistent (if this is enabled). This must be used after /var/ is mounted, as otherwise log data from /run is never flushed to /var regardless of the configuration. SIGUSR2 Request immediate rotation of the journal files. KERNEL COMMAND LINE
A few configuration parameters from journald.conf may be overridden on the kernel command line: systemd.journald.forward_to_syslog=, systemd.journald.forward_to_kmsg=, systemd.journald.forward_to_console= Enables/disables forwarding of collected log messages to syslog, the kernel log buffer or the system console. See journald.conf(5) for information about these settings. ACCESS CONTROL
Journal files are, by default, owned and readable by the "systemd-journal" system group but are not writable. Adding a user to this group thus enables her/him to read the journal files. By default, each logged in user will get her/his own set of journal files in /var/log/journal/. These files will not be owned by the user, however, in order to avoid that the user can write to them directly. Instead, file system ACLs are used to ensure the user gets read access only. Additional users and groups may be granted access to journal files via file system access control lists (ACL). Distributions and administrators may choose to grant read access to all members of the "wheel" and "adm" system groups with a command such as the following: # setfacl -Rnm g:wheel:rx,d:g:wheel:rx,g:adm:rx,d:g:adm:rx /var/log/journal/ Note that this command will update the ACLs both for existing journal files and for future journal files created in the /var/log/journal/ directory. FILES
/etc/systemd/journald.conf Configure systemd-journald behaviour. See journald.conf(5). /run/log/journal/machine-id/*.journal, /run/log/journal/machine-id/*.journal~, /var/log/journal/machine-id/*.journal, /var/log/journal/machine-id/*.journal~ systemd-journald writes entries to files in /run/log/journal/machine-id/ or /var/log/journal/machine-id/ with the ".journal" suffix. If the daemon is stopped uncleanly, or if the files are found to be corrupted, they are renamed using the ".journal~" suffix, and systemd-journald starts writing to a new file. /run is used when /var/log/journal is not available, or when Storage=volatile is set in the journald.conf(5) configuration file. SEE ALSO
systemd(1), journalctl(1), journald.conf(5), systemd.journal-fields(7), sd-journal(3), setfacl(1), pydoc systemd.journal. systemd 208 SYSTEMD-JOURNALD.SERVICE(8)