[syslog-ng] program destination problem (again...)
Alberto Sierra
albertosierra at aesetres.com
Thu Aug 13 08:26:24 CEST 2009
hi there,
i know this is been discussed like a million times already but i'm
stuck and can't get around this.
i'm using a program destination in my syslog-ng config, like this:
destination test_log { file("/var/log/testlog"); };
destination sshd_alerts {
program("/usr/local/bin/ssh_alert_by_email.sh" template("$DATE $HOST
$PROGRAM $MSGONLY")); };
filter sshd { program("sshd"); };
filter login_accepted { match("Accepted password|Accepted publickey"); };
log {
source(s_all);
filter(sshd);
filter(login_accepted);
destination(sshd_alerts);
destination(test_log);
};
and the script as follows:
#!/bin/bash
while read line ; do
echo $line >> /tmp/testlog
done
that's it, it logs to the destination(test_log) but the script does nothing.
i followed a similar thread:
https://lists.balabit.hu/pipermail/syslog-ng/2008-March/011512.html
and the script works well interactively in the shell. I think i hit a
dead end here... btw version 2.0.9
--
Alberto Sierra
More information about the syslog-ng
mailing list