Hi all, I get the following errors on HPUX11 using syslog-ng-1.6.rc4 What does "...unparseable log message: " mean and how can I solve the problem? My /etc/syslog-ng.conf ion enclosed. Thanks Stephan ------------------ -- root@tc1:/var/adm/syslog> cat messages [2003/11/25 13:29:24] tc1 notice [syslog] syslog-ng[1057]: syslog-ng version 1.6.0rc4 starting [2003/11/25 13:29:25] tc1 notice [daemon] prngd[1083]: prngd 0.9.12 (05 March 2001) started up for user root [2003/11/25 13:29:25] tc1 notice [daemon] prngd[1083]: have 7 out of 60 filedescriptors open Y!åC=>e^a01 01:00:00] tc1 err [syslog] unparseable log message: \"<¿vz?á²ÝªšRª9P3_}£šzL;œ óE2÷ãäáCÆ9J®Sr# ej3\'žpâAßyŽ,YåÄò±Ãs ­SÒÖqÞyÒâIšüÍ 4¿DåªR [2003/11/25 13:29:28] tc1 info [auth] sshd[1118]: Server listening on 0.0.0.0 port 22. [2003/11/25 13:29:28] tc1 emerg [kern] [2003/11/25 13:29:39] tc1 info [daemon] /usr/sbin/nfsd[1240]: Setting STREAMS-HEAD high water value to 65536. [2003/11/25 13:29:39] tc1 info [daemon] /usr/sbin/nfsd[1241]: nfsd do_one mpctl succeeded: ncpus = 1. [2003/11/25 13:29:39] tc1 info [daemon] /usr/sbin/nfsd[1241]: nfsd do_one pmap 2 [2003/11/25 13:29:39] tc1 info [daemon] /usr/sbin/nfsd[1241]: nfsd do_one pmap 3 [2003/11/25 13:29:39] tc1 info [daemon] /usr/sbin/nfsd[1241]: nfsd do_one bind 0 [2003/11/25 13:29:39] tc1 info [daemon] /usr/sbin/nfsd[1241]: Return from t_optmgmt(XTI_DISTRIBUTE) 0 [1970/01/01 01:00:00] tc1 err [syslog] unparseable log message: \"<h@\" [1970/01/01 01:00:00] tc1 err [syslog] unparseable log message: \"<h@\" [2003/11/25 13:29:39] tc1 info [daemon] /usr/sbin/nfsd[1247]: nfsd 0 1 sock 4 [1970/01/01 01:00:00] tc1 err [syslog] unparseable log message: \"<h@\" [2003/11/25 13:29:39] tc1 info [daemon] /usr/sbin/nfsd[1248]: nfsd 0 2 sock 4 [1970/01/01 01:00:00] tc1 err [syslog] unparseable log message: \"<h@\" [2003/11/25 13:29:39] tc1 info [daemon] /usr/sbin/nfsd[1241]: nfsd 0 3 sock 4 [1970/01/01 01:00:00] tc1 err [syslog] unparseable log message: \"<h@\" [2003/11/25 13:30:02] tc1 info [auth] sshd[1408]: Accepted publickey for hendl from 10.128.11.71 port 37605 ssh2 ------------------------ root@tc1:/var/adm/syslog> cat /etc/syslog-ng.conf # syslog-ng configuration file. # # This should behave pretty much like the original syslog on HP-UX. But # it could be configured a lot smarter. # # See syslog-ng(8) and syslog-ng.conf(8) for more information. # # 20000925 gb@sysfive.com options { sync (0); time_reopen (10); log_fifo_size (1000); long_hostnames (off); use_dns (no); use_fqdn (no); create_dirs (no); keep_hostname (yes); }; source s_sys { pipe("/dev/log"); internal(); }; destination d_syslog { file("/var/adm/syslog/messages" owner("root") group("root") perm(0644) template( "[$YEAR/$MONTH/$DAY $HOUR:$MIN:$SEC] $HOST $PRIORITY [$FACILITY] $MESSAGE\n")); }; destination d_cons { file("/dev/console"); }; destination d_mesg { file("/var/adm/syslog/syslog.log"); }; destination d_mail { file("/var/adm/syslog/mail.log"); }; destination d_mlrt { usertty("root"); }; destination d_mlal { usertty("*"); }; filter f_filter1 { facility(mail) and level(debug); }; filter f_filter2 { level(debug) or level(info) or level(alert) or level(emerg); }; filter f_filter3 { level(alert); }; filter f_filter4 { level(emerg); }; filter f_syslog { not (facility(mail) or facility(user)); }; log { source(s_sys); filter(f_filter1); destination(d_mail); }; log { source(s_sys); filter(f_filter2); destination(d_mesg); }; log { source(s_sys); filter(f_filter3); destination(d_cons); destination(d_mlrt); }; log { source(s_sys); filter(f_filter4); destination(d_mlal); }; log { source(s_sys); filter(f_syslog); destination(d_syslog); }; root@tc1:/var/adm/syslog> Stephan Hendl <Stephan.Hendl@lds.brandenburg.de>