On Thu, Dec 19, 2002 at 09:33:06AM +0100, Balazs Scheidler wrote:
On Wed, Dec 18, 2002 at 12:21:36PM -0700, Kai Wang wrote:
We implemented syslog-ng on our linux boxes. I found that syslog-ng handles facility "kern" as "user" on our machines. Is this a bug? How to fix it?
You should explain what you mean here, like what it does and what it should do in your opinion. I don't know about a bug like this though.
Make sure you're not testing with the logger utility: $ logger -p kern.crit foo bar baz ...results in: Dec 19 07:10:07 HOST nate: [ID 702911 user.crit] foo bar baz On linux and solaris. Logger doesn't let you fake kernel messages. If you really want to test it - use netcat: $ echo "<2>Dec 19 07:12:01 FAKEHOST fakeprog[1234567]: fake message injected by netcat by nate" | nc -v -v -u localhost 514 ...make sure localhost port 514/UDP has syslog(-ng) listening, and you should get this in your logs: Dec 19 07:12:01 FAKEHOST fakeprog[1234567]: [KERN.CRIT]: fake message injected by netcat by nate -- Nate Campi http://www.campin.net "I have never let my schooling interfere with my education." - Samuel Clemens