Understanding System Logging

The process syslogd is the heart of the logging system. It has its own SMF service, svc:/system/system-log:default. When running, the process maintains a file, /var/run/syslog.pid, that stores its current PID; you can also retrieve the PID with the command pgrep syslog. The configuration file, /etc/default/syslog, maintains one setting that lets the syslogd process receive logging messages from remote systems. I’ll say more about this setting in the configuration section.

The process’s job in life includes reading messages from a list of what you might call message producers. A message producer is a known location to which the operating system, its user processes, and possibly remote hosts, can send messages they ...

Get OCA Oracle Solaris 11 System Administration Exam Guide (Exam 1Z0-821) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.