Interpreting the System Logs
syslogd is the service daemon that logs system events. syslogd's main system log file is /var/log/messages. Many programs use syslogd's standard logging services. Other programs, such as the Apache web server, maintain their own separate log files.
syslog Configuration
Not all log messages are equally important—or even interesting. This is where /etc/syslog.conf comes in. The configuration file /etc/syslog.conf enables you to tailor the log output to meet your own needs.
Messages are categorized by the subsystem that produces them. In the man pages, these categories are called facilities (see Table 8.1).
FACILITY | MESSAGE CATEGORY |
---|---|
auth or security | Security/authorization |
authpriv ... |
Get Linux Firewalls, Third Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.