[syslog-ng] Troubles with the pattern database
Guillaume Rousse
Guillaume.Rousse at inria.fr
Mon Oct 12 16:32:04 CEST 2009
Hello list.
I'm the mandriva maintainer for syslog-ng.
I'm trying to play with the pattern database, with syslog-ng 3.0.4. I
rebuild the package with the attached patch, so as to use
/usr/share/syslog-ng a database location (a bit more FHS-compliant than
/var), and extracted the files downloaded from
http://www.balabit.com/downloads/files/patterndb there.
However, loading them fails with this message:
Error parsing pattern database file;
filename='/usr/share/syslog-ng/patterndb.xml', error='Unexpected <rule>
element'
Error reloading pattern database, no pattern recognition will be done;
It looks like some DB format issue. According to
http://www.balabit.com/dl/html/syslog-ng-v3.0-guide-admin-en.html/ch08s06.html#reference_parsers_pattern_databases
the supported format is v1 until syslog-ng 3.0.2, and the NEWS file
doesn't list any change here, while the patterndb file is already using
v2. Am I correct ? And in this case, is there any way to easily convert
the base to the old format ?
--
BOFH excuse #252:
Our ISP is having {switching,routing,SMDS,frame relay} problems
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: syslog-ng-3.0.4-fix-pattern-database-location.patch
Url: http://lists.balabit.hu/pipermail/syslog-ng/attachments/20091012/568e91f2/attachment.txt
More information about the syslog-ng
mailing list