[syslog-ng] syslog-ng Insider - September 2011

Peter Czanik czanik at balabit.hu
Thu Sep 8 15:34:40 CEST 2011

Dear syslog-ng users,

This is the 6th issue of the syslog-ng Insider, a monthly newsletter
that brings you syslog-ng related news.
Your feedback and news tips about the next issue is welcome at
documentation at balabit.com <mailto:documentation at balabit.com>


Please take a minute to answer three syslog-ng performance related
questions at https://www.surveymonkey.com/s/6ZQDVH6


Please test 3.3 git!
Version 3.3 release is just around the corner. There were many smaller
fixes since the last beta release, so please check out the latest source
code from git and help us to make sure the release is free from known
Your feedback is very valuable, especially if you could test it in real
world situations with logs and configurations we could never imagine
ourselves. As threading is a major new feature, which is not enabled by
default, please try it by adding “threaded(yes)” to your options in
You can download it by “git clone
git://git.balabit.hu/bazsi/syslog-ng-3.3” or browse sources online at

Documentation is also available:
Binary packages from latest git are available:

    * openSUSE:
    * Debian:

Logs for patterns, patterns for logs
We also would like to extend our UNIX/Linux patterns. Creating logs in a
"lab" environment just for pattern creation is very time consuming. It
would be very helpful for us, if you could send logs in exchange for
patterns. Just make sure, that there is no sensitive data left in the
logs, as the result will be published to make it available for the whole
syslog-ng community.
I published a blog ( http://czanik.blogs.balabit.com/2010/11/log-sample-
), how I collect logs for pattern creation, but of course, any logs are

Syslog clients for Windows
Central logging using syslog is long part of the UNIX / Linux
infrastructure. But if someone also happens to have Windows machines, it
is still possible to use the proven syslog-ng servers. There are many
clients available, both open and closed source, ranging from simple
event forwarders to complex logging solutions. Here is a collection of them:


    * Octopussy now supports syslog-ng:
    * We published some patterns for Windows Server 2008 (most of these
      should also work with other releases):


Download our latest white paper titled "Logging, the Pillar of
Compliance". From this White Paper you can learn:
* How can you avoid a breach of compliance, and ensure your business
* What are the key IT security requirements of the most frequently
applied standards, such as the ISO 27001, PCI, SOX or COBIT.
* How advanced logging technology can contribute to cost-effective
compliance and successful accomplishment of audits.
It is available at http://www.balabit.com/compliance-and-logging

*syslog-ng PE Case Study - DataPath Inc.*
DataPath, founded in 1984, is a management-owned, privately held company
based in Little Rock, Arkansas, that produces software solutions for
administering employee benefit plans. They implemented a SYSLOG-NG AGENT
FOR WINDOWS-based logging infrastructure to meet HIPAA and PCI DSS
requirements in their Microsoft-based environment.
It is available at


Peter Czanik (CzP) <czanik at balabit.hu>
BalaBit IT Security / syslog-ng upstream

More information about the syslog-ng mailing list