forked from gentoo/gentoo
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Package-Manager: portage-2.2.20.1
- Loading branch information
Michael Sterrett
committed
Aug 28, 2015
1 parent
487e2d7
commit c83c005
Showing
7 changed files
with
413 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,3 +1,4 @@ | ||
DIST syslog-ng-3.7.1.tar.gz 3509575 SHA256 4c19841b9079b377cd814b1e6ebbf273af41d04d51c648f4c31f19bfadc20220 SHA512 6f9a68aec2594d83c43cf40e12a3d56e65661929a47c2a053ae120e34ad358d4dfd0b5b0303a374a5557f2ac0670114037a339530b111b1078b56e5baf284ed4 WHIRLPOOL 247498f144aec419d1214378332bc286795fa8f59ba33ce75b3d000be6340758f00a694d76b5cbfdd6b68d138a6cd373c06bb52c70e6ed6de29189c03a56d16b | ||
DIST syslog-ng_3.4.8.tar.gz 3169372 SHA256 96c2f970fbba4fdd7659b1fee5e476d2858c911d4304d42099f495493762ff49 SHA512 23ba9908664e594c186cbe4bd5dcfb5d2ed3faf02ec45b931bb91b078660547989c2340a08b478a33adb530d39a6d6f39a2e7519107a3f6b923ac9f39529620e WHIRLPOOL 1085fa2c90e0c85421c64ed50e8a357f29006afea2f3e329e42d1e27f4210a10fe0f05d4af95a11c245d68b43644a4a829a50c05b7d541f59a6f580b3643b434 | ||
DIST syslog-ng_3.6.2.tar.gz 3207456 SHA256 ef47fada52981e09af570457a5af30f815f5d5b6c2e33754cedd4ca9780d8261 SHA512 15603b4df2001e1ce7e0019d0dd9a0f4295445e3fd19a527ebf3d49486da7da27fac6c465727ec0354f8f70ca0f671a285ec132f9aa0de62b40f18b44af2a226 WHIRLPOOL 7135db242374d6e5789c0820a06187b7e325054fd214e3aee75aac5b8dde56786b432cc4519c07ce0cd413c3a560e8e74ee6eca319c21eaa750ca8140ef1b63f | ||
DIST syslog-ng_3.6.4.tar.gz 3276432 SHA256 7be11df31ac7d716f1f952e22b5ae8e2049edd633a41b223776a853d9106f4e7 SHA512 9c648628b9bd3ebb25bc44fa6586e88a4b9ed7c24b1c337569d3cccb04bf2f427ba1218900f8dfd8f668f245d6ab44ad45b67da661b7c2af68c6c42101b722e1 WHIRLPOOL 496a9b2e06e33b0c42726f3b13f859f356f136367c48363cd22b086b72f4f54a32cc057235636f2d2ea3ad7bdd622354ea67df1cbc770be608a84bc861fce93d |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,37 @@ | ||
@version: 3.7 | ||
# $Id$ | ||
# | ||
# Syslog-ng default configuration file for Gentoo Linux | ||
|
||
# https://bugs.gentoo.org/show_bug.cgi?id=426814 | ||
@include "scl.conf" | ||
|
||
options { | ||
threaded(yes); | ||
chain_hostnames(no); | ||
|
||
# The default action of syslog-ng is to log a STATS line | ||
# to the file every 10 minutes. That's pretty ugly after a while. | ||
# Change it to every 12 hours so you get a nice daily update of | ||
# how many messages syslog-ng missed (0). | ||
stats_freq(43200); | ||
# The default action of syslog-ng is to log a MARK line | ||
# to the file every 20 minutes. That's seems high for most | ||
# people so turn it down to once an hour. Set it to zero | ||
# if you don't want the functionality at all. | ||
mark_freq(3600); | ||
}; | ||
|
||
source src { system(); internal(); }; | ||
|
||
destination messages { file("/var/log/messages"); }; | ||
|
||
# By default messages are logged to tty12... | ||
destination console_all { file("/dev/tty12"); }; | ||
# ...if you intend to use /dev/console for programs like xconsole | ||
# you can comment out the destination line above that references /dev/tty12 | ||
# and uncomment the line below. | ||
#destination console_all { file("/dev/console"); }; | ||
|
||
log { source(src); destination(messages); }; | ||
log { source(src); destination(console_all); }; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,25 @@ | ||
@version: 3.7 | ||
# $Id$ | ||
# | ||
# Syslog-ng default configuration file for Gentoo FreeBSD | ||
# | ||
|
||
# https://bugs.gentoo.org/show_bug.cgi?id=426814 | ||
@include "scl.conf" | ||
|
||
options { | ||
threaded(yes); | ||
chain_hostnames(no); | ||
|
||
# The default action of syslog-ng is to log a STATS line | ||
# to the file every 10 minutes. That's pretty ugly after a while. | ||
# Change it to every 12 hours so you get a nice daily update of | ||
# how many messages syslog-ng missed (0). | ||
stats_freq(43200); | ||
}; | ||
|
||
source src { system(); internal(); }; | ||
|
||
destination messages { file("/var/log/messages"); }; | ||
|
||
log { source(src); destination(messages); }; |
115 changes: 115 additions & 0 deletions
115
app-admin/syslog-ng/files/3.7/syslog-ng.conf.gentoo.hardened
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,115 @@ | ||
@version: 3.7 | ||
# Copyright 1999-2011 Gentoo Foundation | ||
# Distributed under the terms of the GNU General Public License v2 | ||
# $Id$ | ||
|
||
# https://bugs.gentoo.org/show_bug.cgi?id=426814 | ||
@include "scl.conf" | ||
|
||
# | ||
# Syslog-ng configuration file, compatible with default hardened installations. | ||
# | ||
|
||
options { | ||
threaded(yes); | ||
chain_hostnames(no); | ||
stats_freq(43200); | ||
}; | ||
|
||
source src { | ||
unix-dgram("/dev/log"); | ||
internal(); | ||
}; | ||
source kernsrc { | ||
file("/proc/kmsg"); | ||
}; | ||
|
||
#source net { udp(); }; | ||
#log { source(net); destination(net_logs); }; | ||
#destination net_logs { file("/var/log/HOSTS/$HOST/$YEAR$MONTH$DAY.log"); }; | ||
|
||
destination authlog { file("/var/log/auth.log"); }; | ||
destination _syslog { file("/var/log/syslog"); }; | ||
destination cron { file("/var/log/cron.log"); }; | ||
destination daemon { file("/var/log/daemon.log"); }; | ||
destination kern { file("/var/log/kern.log"); file("/dev/tty12"); }; | ||
destination lpr { file("/var/log/lpr.log"); }; | ||
destination user { file("/var/log/user.log"); }; | ||
destination uucp { file("/var/log/uucp.log"); }; | ||
#destination ppp { file("/var/log/ppp.log"); }; | ||
destination mail { file("/var/log/mail.log"); }; | ||
|
||
destination avc { file("/var/log/avc.log"); }; | ||
destination audit { file("/var/log/audit.log"); }; | ||
destination pax { file("/var/log/pax.log"); }; | ||
destination grsec { file("/var/log/grsec.log"); }; | ||
|
||
destination mailinfo { file("/var/log/mail.info"); }; | ||
destination mailwarn { file("/var/log/mail.warn"); }; | ||
destination mailerr { file("/var/log/mail.err"); }; | ||
|
||
destination newscrit { file("/var/log/news/news.crit"); }; | ||
destination newserr { file("/var/log/news/news.err"); }; | ||
destination newsnotice { file("/var/log/news/news.notice"); }; | ||
|
||
destination debug { file("/var/log/debug"); }; | ||
destination messages { file("/var/log/messages"); }; | ||
destination console { usertty("root"); }; | ||
destination console_all { file("/dev/tty12"); }; | ||
#destination loghost { udp("loghost" port(999)); }; | ||
|
||
destination xconsole { pipe("/dev/xconsole"); }; | ||
|
||
filter f_auth { facility(auth); }; | ||
filter f_authpriv { facility(auth, authpriv); }; | ||
filter f_syslog { not facility(authpriv, mail); }; | ||
filter f_cron { facility(cron); }; | ||
filter f_daemon { facility(daemon); }; | ||
filter f_kern { facility(kern); }; | ||
filter f_lpr { facility(lpr); }; | ||
filter f_mail { facility(mail); }; | ||
filter f_user { facility(user); }; | ||
filter f_uucp { facility(uucp); }; | ||
#filter f_ppp { facility(ppp); }; | ||
filter f_news { facility(news); }; | ||
filter f_debug { not facility(auth, authpriv, news, mail); }; | ||
filter f_messages { level(info..warn) | ||
and not facility(auth, authpriv, mail, news); }; | ||
filter f_emergency { level(emerg); }; | ||
|
||
filter f_info { level(info); }; | ||
|
||
filter f_notice { level(notice); }; | ||
filter f_warn { level(warn); }; | ||
filter f_crit { level(crit); }; | ||
filter f_err { level(err); }; | ||
|
||
filter f_avc { message(".*avc: .*"); }; | ||
filter f_audit { message("^(\\[.*\..*\] |)audit.*") and not message(".*avc: .*"); }; | ||
filter f_pax { message("^(\\[.*\..*\] |)PAX:.*"); }; | ||
filter f_grsec { message("^(\\[.*\..*\] |)grsec:.*"); }; | ||
|
||
log { source(src); filter(f_authpriv); destination(authlog); }; | ||
log { source(src); filter(f_syslog); destination(_syslog); }; | ||
log { source(src); filter(f_cron); destination(cron); }; | ||
log { source(src); filter(f_daemon); destination(daemon); }; | ||
log { source(kernsrc); filter(f_kern); destination(kern); }; | ||
log { source(src); filter(f_lpr); destination(lpr); }; | ||
log { source(src); filter(f_mail); destination(mail); }; | ||
log { source(src); filter(f_user); destination(user); }; | ||
log { source(src); filter(f_uucp); destination(uucp); }; | ||
log { source(kernsrc); filter(f_pax); destination(pax); }; | ||
log { source(kernsrc); filter(f_grsec); destination(grsec); }; | ||
log { source(kernsrc); filter(f_audit); destination(audit); }; | ||
log { source(kernsrc); filter(f_avc); destination(avc); }; | ||
log { source(src); filter(f_mail); filter(f_info); destination(mailinfo); }; | ||
log { source(src); filter(f_mail); filter(f_warn); destination(mailwarn); }; | ||
log { source(src); filter(f_mail); filter(f_err); destination(mailerr); }; | ||
log { source(src); filter(f_news); filter(f_crit); destination(newscrit); }; | ||
log { source(src); filter(f_news); filter(f_err); destination(newserr); }; | ||
log { source(src); filter(f_news); filter(f_notice); destination(newsnotice); }; | ||
log { source(src); filter(f_debug); destination(debug); }; | ||
log { source(src); filter(f_messages); destination(messages); }; | ||
log { source(src); filter(f_emergency); destination(console); }; | ||
#log { source(src); filter(f_ppp); destination(ppp); }; | ||
log { source(src); destination(console_all); }; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,42 @@ | ||
# Config file for /etc/init.d/syslog-ng | ||
|
||
# If you are not using network logging, this entire section should be | ||
# commented out. Otherwise, choose one of the settings below based on | ||
# how you are configuring your network. | ||
# | ||
# If you are using the net.* scripts to configure your network, you should | ||
# set rc_need to match the interface through which your logging server | ||
# can be reached. | ||
#rc_need="net.eth0" | ||
# | ||
# If you are using an interface manager like wicd, dhcpcd in standalone | ||
# mode, networkmanager, etc to control your interfaces, set rc_need to | ||
# the name of that service. | ||
# rc_need="dhcpcd" | ||
#rc_need="networkmanager" | ||
# | ||
# If you are using newnet and configuring your interface statically with | ||
# the network script, you should use this setting. | ||
#rc_need="network" | ||
# | ||
# You can use this setting, but I do not recommend relying on it. | ||
#rc_need="net" | ||
# | ||
# You may also want to uncomment the following if you are using network | ||
# logging. | ||
#rc_use="stunnel" | ||
|
||
# For very customized setups these variables can be adjusted as needed | ||
# but for most situations they should remain commented: | ||
# SYSLOG_NG_CONFIGFILE=/etc/syslog-ng/syslog-ng.conf | ||
# SYSLOG_NG_STATEFILE_DIR=/var/lib/syslog-ng | ||
# SYSLOG_NG_STATEFILE=${SYSLOG_NG_STATEFILE_DIR}/syslog-ng.persist | ||
# SYSLOG_NG_PIDFILE_DIR=/run | ||
# SYSLOG_NG_PIDFILE=${SYSLOG_NG_PIDFILE_DIR}/syslog-ng.pid | ||
# SYSLOG_NG_GROUP=root | ||
# SYSLOG_NG_USER=root | ||
|
||
# Put any additional options for syslog-ng here. | ||
# See syslog-ng(8) for more information. | ||
|
||
SYSLOG_NG_OPTS="" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,59 @@ | ||
#!/sbin/runscript | ||
# Copyright 1999-2015 Gentoo Foundation | ||
# Distributed under the terms of the GNU General Public License v2 | ||
# $Id$ | ||
|
||
SYSLOG_NG_CONFIGFILE=${SYSLOG_NG_CONFIGFILE:-/etc/syslog-ng/${RC_SVCNAME}.conf} | ||
SYSLOG_NG_STATEFILE_DIR=${SYSLOG_NG_STATEFILE_DIR:-/var/lib/syslog-ng} | ||
SYSLOG_NG_STATEFILE=${SYSLOG_NG_STATEFILE:-${SYSLOG_NG_STATEFILE_DIR}/syslog-ng.persist} | ||
SYSLOG_NG_PIDFILE_DIR=${SYSLOG_NG_PIDFILE_DIR:-/run} | ||
SYSLOG_NG_PIDFILE=${SYSLOG_NG_PIDFILE:-${SYSLOG_NG_PIDFILE_DIR}/${RC_SVCNAME}.pid} | ||
|
||
SYSLOG_NG_GROUP=${SYSLOG_NG_GROUP:-root} | ||
SYSLOG_NG_USER=${SYSLOG_NG_USER:-root} | ||
|
||
command="/usr/sbin/syslog-ng" | ||
command_args="--persist-file \"${SYSLOG_NG_STATEFILE}\" --cfgfile \"${SYSLOG_NG_CONFIGFILE}\" --pidfile \"${SYSLOG_NG_PIDFILE}\" ${SYSLOG_NG_OPTS}" | ||
extra_commands="checkconfig" | ||
extra_started_commands="reload" | ||
pidfile="${SYSLOG_NG_PIDFILE}" | ||
start_stop_daemon_args="--user \"${SYSLOG_NG_USER}\":\"${SYSLOG_NG_GROUP}\"" | ||
description="Syslog-ng is a syslog replacement with advanced filtering features." | ||
description_checkconfig="Check the configuration file that will be used by \"start\"" | ||
description_reload="Reload the configuration without exiting" | ||
required_files="${SYSLOG_NG_CONFIGFILE}" | ||
required_dirs="${SYSLOG_NG_PIDFILE_DIR}" | ||
|
||
depend() { | ||
use clock | ||
need hostname localmount | ||
after bootmisc | ||
provide logger | ||
} | ||
|
||
checkconfig() { | ||
ebegin "Checking your configfile (${SYSLOG_NG_CONFIGFILE})" | ||
syslog-ng -s -f "${SYSLOG_NG_CONFIGFILE}" | ||
eend $? "Configuration error. Please fix your configfile (${SYSLOG_NG_CONFIGFILE})" | ||
} | ||
|
||
start_pre() { | ||
checkconfig || return 1 | ||
checkpath \ | ||
-d \ | ||
--mode 0700 \ | ||
--owner "${SYSLOG_NG_USER}:${SYSLOG_NG_GROUP}" \ | ||
"${SYSLOG_NG_STATEFILE_DIR}" | ||
} | ||
|
||
stop_pre() { | ||
[ "$RC_CMD" = restart ] && sleep 1 | ||
return 0 | ||
} | ||
|
||
reload() { | ||
checkconfig || return 1 | ||
ebegin "Reloading configuration and re-opening log files" | ||
start-stop-daemon --signal HUP --pidfile "${pidfile}" | ||
eend $? | ||
} |
Oops, something went wrong.