Re: [opensuse] Re: Need help creating a syslog -ng config file to perform a Syslog Daemon's Work.

2007-04-25 Thread Carlos E. R. 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1


The Wednesday 2007-04-25 at 03:55 +0200, Joachim Schrod wrote:

 Carlos E. R. wrote:

  At least, it is something. I have seen, elsewhere, vievers that could sort
  on the priority, display in different colours, or simply hide lower priority
  messages as the user chooses.
 
 For one of our customers, my staff implemented a syslog-ng based management
 that stores the records in a PostgreSQL database, with an associated web
 interface that allows filtering, sorting, and appropriate visualization of log
 records, just as you mentioned. That's why I knew that there must be a
 possibility to record the level, it's one field in the database scheme that's
 used for filtering and visualization.

I see.

Yes, I have used heavy weight applications to record and analyze message 
logs (Lucent NFM). But you know, often I could find what I wanted with 
grep (or an enhanced, tailored, grep), better than with the very expensive 
app.


 Actually, I discuss since several months with this customers if we shouldn't
 release that application and the associated management processes as Open
 Source. The technical department has no problems with that -- it ain't an
 application that's in core of their business, after all. The legal department
 has lots of qualms, though; they are concerned about indemnification and
 warranty, especially in the case of nuisance lawsuits. It will need lots of
 discussions. (Everytime I read on Groklaw that the SCO attack is a thing of
 the past, I recognize that I'm working in a different world. A world where
 that lawsuit still shows lots of effect.)

I guess that could be very interesting :-)

- -- 
Cheers,
   Carlos E. R.

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Made with pgp4pine 1.76

iD8DBQFGL7URtTMYHG2NR9URAhOdAJ9rf93EhEUpwS5bAqBzU9S8U2qaAACfcY7Y
AIRxQ4hVufTkYi+zM3821Ho=
=ozUf
-END PGP SIGNATURE-

-- 
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[opensuse] Re: Need help creating a syslog -ng config file to perform a Syslog Daemon's Work.

2007-04-24 Thread Joachim Schrod 

Carlos E. R. wrote:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1


The Tuesday 2007-04-24 at 17:58 +1000, Registration Account wrote:


Syslog-ng IS the Linux system log daemon, however  it performs function
in much the same way as a Mainframe  Daemon works and depending on my
audience I have to be very specific with the reference 'syslog daemon'
due its multiple meanings.


I simply meant that the syslog or syslog-ng daemon in linux doesn't do 
what you want, ie, record the priority level in the string sent to the 
file, nor do I know how to write it, short of modifying the source code, 
which I haven't even inspected to estimate the dificulty of such a simple 
modification.


I don't think there's a source modification needed for syslog-ng.
One can specify $LEVEL in a template() clause in a destination 
section. E.g.


destination d_file {
file(/var/log/messages);
template($HOUR:$MIN:$SEC $TZ $HOST [$LEVEL] $MSG\n);
template_escape(no);
}

(This is taken straight from the syslog-ng documentation in 
/usr/share/doc/packages/syslog-ng/syslog-ng.pdf. I would add some 
more information like $DATE and $FACILITY. ;-)


$LEVEL expands to the name of the level and not to a number, though.

Best,
Joachim

--
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Joachim Schrod  Email: [EMAIL PROTECTED]
Roedermark, Germany

--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [opensuse] Re: Need help creating a syslog -ng config file to perform a Syslog Daemon's Work.

2007-04-24 Thread Carlos E. R. 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1


The Tuesday 2007-04-24 at 15:31 +0200, Joachim Schrod wrote:

 I don't think there's a source modification needed for syslog-ng.
 One can specify $LEVEL in a template() clause in a destination section. E.g.
 
 destination d_file {
 file(/var/log/messages);
 template($HOUR:$MIN:$SEC $TZ $HOST [$LEVEL] $MSG\n);
 template_escape(no);
 }
 
 (This is taken straight from the syslog-ng documentation in
 /usr/share/doc/packages/syslog-ng/syslog-ng.pdf. 

Gosh! I neglected looking in there. I thought the man page was complete! :-/

 I would add some more
 information like $DATE and $FACILITY. ;-)
 
 $LEVEL expands to the name of the level and not to a number, though.

At least, it is something. I have seen, elsewhere, vievers that could sort 
on the priority, display in different colours, or simply hide lower 
priority messages as the user chooses.

- -- 
Cheers,
   Carlos E. R.

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Made with pgp4pine 1.76

iD8DBQFGLhjZtTMYHG2NR9URAmizAJ9GAlTEBy2UAHVe7F71QlPQrCN0LACeI043
rgARFTxGKqFrYGtLoC2xIGU=
=S3ZU
-END PGP SIGNATURE-

-- 
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[opensuse] Re: Need help creating a syslog -ng config file to perform a Syslog Daemon's Work.

2007-04-24 Thread Joachim Schrod 

Carlos E. R. wrote:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1


The Tuesday 2007-04-24 at 15:31 +0200, Joachim Schrod wrote:


I don't think there's a source modification needed for syslog-ng.
One can specify $LEVEL in a template() clause in a destination section. E.g.

destination d_file {
file(/var/log/messages);
template($HOUR:$MIN:$SEC $TZ $HOST [$LEVEL] $MSG\n);
template_escape(no);
}

(This is taken straight from the syslog-ng documentation in
/usr/share/doc/packages/syslog-ng/syslog-ng.pdf. 


Gosh! I neglected looking in there. I thought the man page was complete! :-/


I would add some more
information like $DATE and $FACILITY. ;-)

$LEVEL expands to the name of the level and not to a number, though.


At least, it is something. I have seen, elsewhere, vievers that could sort 
on the priority, display in different colours, or simply hide lower 
priority messages as the user chooses.


For one of our customers, my staff implemented a syslog-ng based 
management that stores the records in a PostgreSQL database, with 
an associated web interface that allows filtering, sorting, and 
appropriate visualization of log records, just as you mentioned. 
That's why I knew that there must be a possibility to record the 
level, it's one field in the database scheme that's used for 
filtering and visualization.


Actually, I discuss since several months with this customers if we 
shouldn't release that application and the associated management 
processes as Open Source. The technical department has no problems 
with that -- it ain't an application that's in core of their 
business, after all. The legal department has lots of qualms, 
though; they are concerned about indemnification and warranty, 
especially in the case of nuisance lawsuits. It will need lots of 
discussions. (Everytime I read on Groklaw that the SCO attack is a 
thing of the past, I recognize that I'm working in a different 
world. A world where that lawsuit still shows lots of effect.)


Best,
Joachim

--
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Joachim Schrod  Email: [EMAIL PROTECTED]
Roedermark, Germany

--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]