Questions tagged [rsyslogd]
The rsyslogd tag has no summary.
54 questions
0
votes
1
answer
56
views
rsyslog dynaFile file name from part of received message
I'm using python logging library to write to log file.
Currently It write to a static file, and contain:
myapp; 2025-06-25 05:44:38 INFO builtins <module> Hello world
I'm new to rsyslog.
How to ...
- 103
0
votes
0
answers
1k
views
rsyslogd: omfile: creating parent directories for file 'Permission denied' failed: /home/<user>/logs/docker/log
I'm getting the following error (note that rsyslogd is run as root)
rsyslogd: omfile: creating parent directories for file 'Permission denied' failed: /home/<user>/logs/docker/log
This ...
- 3
1
vote
0
answers
160
views
SELINUX issue running systemctl from script invoked by rsyslogd
We have a constant issue where sssd is getting itself in failed state when an oom-killer event happens and kills a user's memory hog job. No idea why this happens as the oom-killer is not touching ...
- 324
0
votes
1
answer
63
views
rsyslogd v3.x.x unexpectedly closes write connection to named pipe target
I've configured rsyslog to forward certain log messages to a named pipe /tmp/logger.pipe. I then have a separate process reading from the named pipe. Relevant section from /etc/rsyslog.conf
# Remote ...
- 1,023
0
votes
0
answers
1k
views
Is rsyslog compatible with syslog-ng?
I am doing a project where the organisation uses syslog-ng for the central remote logging servers and this will surely not change.
The application suite that I am developing on, is using Red Hat ...
0
votes
1
answer
272
views
rsyslog: capture errors from "omprog" script
I am using custom python script to process logs, and ban offending IPs. Here is the line from my /etc/rsyslog.conf:
local0.* action(type="omprog" name="asterisk" binary="/usr/...
- 758
0
votes
1
answer
371
views
Split logging on rsyslogd
My goal is to send all logs to one source remote and still log local but then send all the AuditD logs to its own source on port 20002. But for some reason, my auditd logs are still ending up with my ...
- 1,754
0
votes
0
answers
3k
views
rsyslogd: imjournal: fopen() failed for path: '/imjournal.state.tmp': Permission denied
I am having a Linux server with 128 GB RAM, 32 CPU and its running TIBCO EBX application. When I checked my server log file(/var/log/messages), it filled with below messages. Are these messages ...
- 113
2
votes
1
answer
188
views
rsyslogd sometimes doesn't write the initial bits of dmesg to /var/log/syslog
I have a Linux machine running Ubuntu 16.04.7 LTS that uses rsyslogd. My understanding of rsyslogd is that it rotates the content from the kernel ring buffer (ie, dmesg) to an on-disk file (ie, /var/...
- 153
0
votes
0
answers
741
views
Where is Rsyslog programname set?
I am using AWS Elasticbeanstalk to run my java web application. In EC2 node under /etc/rsyslog.d/web.conf
if $programname == 'web' then {
*.=warning;*.=err;*.=crit;*.=alert;*.=emerg /var/log/web....
- 101
0
votes
1
answer
477
views
Help with Interpreting and Resolving Irregular Hardware Error Messages on Debian GNU/Linux System
I have a small problem here that I hope your kind help with. Recently these messages started appearing in my notification tray:
Message from syslogd@oldsage at Apr 30 12:25:28 ... kernel:[9655.826192]...
- 1
2
votes
1
answer
722
views
What is the meaning of the daemon facility in rsyslog.conf on Red Hat Linux
I'm looking for detailed information about what the daemon facility would log if configured in /etc/rsyslog.conf.
So far, the most detail I have found is:
daemon: affects a daemon without any special ...
- 23
1
vote
0
answers
306
views
Is there a way to not log specific syslog messages?
For example I have the following:
pam_unix(sudo:session): session opened for user root(uid=0) by (uid=997)
pam_unix(sudo:session): session closed for user root
pam_unix(cron:session): session closed ...
- 1,754
0
votes
0
answers
965
views
Rsyslog is not installed after successfully executing "sudo make install" using source file
I need mmaudit plugin for converting system audit logs into JSON formatted logs. But mmaudit is not available with standard versions. so I decided to work with source files from GitHub. I followed ...
- 1
4
votes
1
answer
2k
views
How to redirect rsyslog messges from a specific unix socket to a different log file without duplication?
I have been trying to implement separate logging for haproxy.
But I end up with duplicate logging and can't separate logs based on the input socket or facility alone.
My sample configuration in ...
- 915