What does Linux use to produce and maintain log files? Where do you configure it?
syslogd - otherwise known as the syslog daemon.
The syslogd daemon handles messages from servers and other user-mode programs. It’s usually paired with a daemon called klogd, which is generally installed from the same sysklogd package as syslogd. The klogd daemon manages logging of kernel messages.
For configuration, this is done through the /etc/syslog.conf file. (The rsyslogd configuration file is /etc/rsyslog.conf and is similar to syslog.conf.)
The syslogd daemon handles messages from servers and other user-mode programs. It’s usually paired with a daemon called klogd, which is generally installed from the same sysklogd package as syslogd. The klogd daemon manages logging of kernel messages.
For configuration, this is done through the /etc/syslog.conf file. (The rsyslogd configuration file is /etc/rsyslog.conf and is similar to syslog.conf.)
Tags: /etc, 101.1, daemon, klog, linux, logs, syslog
Source:
Source:
What format do configuration lines in the syslog configuration file use?
facility.priority action
- Facility being the type of program or service
- Priority being the importance of the message
- Action is the file or computer that accepts the message
Tags: /etc, configuration, logs, syslog
Source:
Source:
What are some of the valid codes for the facility value? What do they generally mean?
- auth - security/authorization related
- authpriv - privilege related
- cron - cron job related
- daemon - servers/processes that aren't covered by a more specific facilitiy
- kern - kernel related
- lpr -
- mail - used for mail servers and other mail-processing tools
- mark - reserved for internal use
- news - server update/news related
- security - identical to auth, though auth is the preferred facility
- syslog - related to the system logging daemon
- user - user related
- uucp - printing related
- local0 through local7
Asterisk * is a wildcard for all facilities, while the . character can be used to select multiple facilities.
Tags: 101.1, facilities, linux, logs, syslog
Source:
Source:
What are the valid codes for the priority portion, and what do they imply?
- debug
- notice
- info
- warning - currently used, self-explanatory
- warn - deprecated
- error - deprecated
- err
- crit
- alert
- emerg
- panic - deprecated
Aside from the deprecated codes, the above are listed in escalating importance.
Tags: 101.1, codes, linux, logs, priority, syslog
Source:
Source:
Flashcard set info:
Author: Ryan Robson
Main topic: Informatics
Topic: Linux
City: Houston
Published: 08.02.2011
Card tags:
All cards (75)
/dev (2)
/etc (2)
101.1 (36)
acronyms (1)
architecture (1)
ata (2)
bash (1)
BIOS (5)
bios (1)
bit (1)
branch (1)
bus (2)
bus types (7)
cables (1)
clock (3)
codes (1)
commands (7)
configuration (1)
controller (1)
daemon (1)
data rates (1)
dev (1)
device types (1)
devices (5)
dmesg (1)
facilities (1)
fdisk (1)
fork (1)
fs (8)
hard drives (17)
history (1)
host adapter (1)
hwclock (1)
IEEE (1)
ISA (2)
klog (1)
linux (31)
logs (5)
lspci (1)
lsusb (1)
master (1)
modprobe (1)
naming standards (1)
options (1)
packages (1)
partitions (11)
pata (2)
PATA (6)
PCI (2)
pci (2)
priority (1)
proc (3)
RAM (1)
resistor (1)
RPM (2)
sata (3)
SATA (2)
scsi (9)
SCSI (4)
SCSI chain (1)
security (1)
slave (1)
synchronize (1)
syslog (4)
termination (2)
time (4)
type codes (2)
umount (1)
USB (1)
x86 (6)
