Your message dated Tue, 20 Mar 2012 10:44:32 -0500
with message-id <1332258272.5533.7.camel@localhost>
and subject line Re: Bug#664748: ufw: don't log to the kernel log
has caused the Debian Bug report #664748,
regarding ufw: don't log to the kernel log
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
664748: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=664748
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: ufw
Version: 0.30.1-2
Severity: wishlist
Could this please be changed to not use the klogd service? It just
floods out the kernel log and then I can't see the immediate kernel
messages when calling dmesg.
It would be better to direct it just to a file in /var/log/
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (990, 'testing'), (500, 'unstable'), (100, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 3.2.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages ufw depends on:
ii debconf [debconf-2.0] 1.5.41
ii iptables 1.4.12.2-1
ii python 2.7.2-10
ii python2.6 2.6.7-4
ii python2.7 2.7.3~rc1-1
ii ucf 3.0025+nmu2
ufw recommends no packages.
Versions of packages ufw suggests:
ii rsyslog 5.8.6-1
-- Configuration Files:
/etc/rsyslog.d/20-ufw.conf changed:
:msg,contains,"[UFW " -/var/log/ufw.log
-- debconf information:
* ufw/enable: true
* ufw/existing_configuration:
ufw/allow_custom_ports:
ufw/allow_known_ports:
--- End Message ---
--- Begin Message ---
On Tue, 2012-03-20 at 20:04 +0530, Ritesh Raj Sarraf wrote:
> Package: ufw
> Version: 0.30.1-2
> Severity: wishlist
>
> Could this please be changed to not use the klogd service? It just
> floods out the kernel log and then I can't see the immediate kernel
> messages when calling dmesg.
>
> It would be better to direct it just to a file in /var/log/
It isn't ufw that is doing the logging, it is the kernel via netfilter.
As such, logged policy vilations cannot be removed by ufw. For kern.log,
it is up to your syslog to put the messages where you want. With
standard syslog, there isn't really much you can do because netfilter
denials are logged at a priority that you would probably want to
otherwise see in your kern.log. ufw ships a sample configuration file
for use with rsyslog (see /etc/rsyslog.d/20-ufw.conf) that allows you to
log messages to /var/log/ufw.log.
To remove the messages from dmesg, your only choice is to reduce your
logging level ('man ufw') or to add explicit allow/deny rules which
won't be logged.
--
Jamie Strandboge | http://www.canonical.com
signature.asc
Description: This is a digitally signed message part
--- End Message ---
