Annotation of src/etc/syslog.conf, Revision 1.20
1.20 ! jca 1: # $OpenBSD: syslog.conf,v 1.19 2015/11/26 15:25:14 deraadt Exp $
1.2 deraadt 2: #
1.3 millert 3:
1.12 camield 4: *.notice;auth,authpriv,cron,ftp,kern,lpr,mail,user.none /var/log/messages
1.16 camield 5: kern.debug;syslog,user.info /var/log/messages
1.3 millert 6: auth.info /var/log/authlog
7: authpriv.debug /var/log/secure
8: cron.info /var/cron/log
9: daemon.info /var/log/daemon
10: ftp.info /var/log/xferlog
11: lpr.debug /var/log/lpd-errs
12: mail.info /var/log/maillog
13:
1.14 beck 14: # Uncomment this line to send "important" messages to the system
1.17 david 15: # console: be aware that this could create lots of output.
1.16 camield 16: #*.err;auth.notice;authpriv.none;kern.debug;mail.crit /dev/console
1.14 beck 17:
18: # Uncomment this to have all messages of notice level and higher
19: # as well as all authentication messages sent to root.
1.16 camield 20: #*.notice;auth.debug root
1.14 beck 21:
22: # Everyone gets emergency messages.
1.19 deraadt 23: #*.emerg *
1.3 millert 24:
1.16 camield 25: # Uncomment to log to a central host named "loghost". You need to run
1.5 deraadt 26: # syslogd with the -u option on the remote host if you are using this.
27: # (This is also required to log info from things like routers and
28: # ISDN-equipment). If you run -u, you are vulnerable to syslog bombing,
1.16 camield 29: # and should consider blocking external syslog packets.
1.3 millert 30: #*.notice;auth,authpriv,cron,ftp,kern,lpr,mail,user.none @loghost
1.16 camield 31: #auth,daemon,syslog,user.info;authpriv,kern.debug @loghost
1.6 millert 32:
1.18 ajacouto 33: # Uncomment to log messages from doas(1) to its own log file. Matches are done
34: # based on the program name.
1.6 millert 35: # Program-specific logs:
1.18 ajacouto 36: #!doas
37: #*.* /var/log/doas