/[gentoo-x86]/app-admin/syslog-ng/files/syslog-ng.conf.gentoo.hardened
Gentoo

Contents of /app-admin/syslog-ng/files/syslog-ng.conf.gentoo.hardened

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.5 - (hide annotations) (download)
Tue Oct 30 17:16:15 2007 UTC (6 years, 11 months ago) by solar
Branch: MAIN
Changes since 1.4: +18 -3 lines
- update syslog-ng.conf for hardened
(Portage version: 2.1.3.9)

1 solar 1.1 # Copyright 2005 Gentoo Foundation
2     # Distributed under the terms of the GNU General Public License v2
3 solar 1.5 # $Header: /var/cvsroot/gentoo-x86/app-admin/syslog-ng/files/syslog-ng.conf.gentoo.hardened,v 1.4 2006/07/12 23:59:59 solar Exp $
4 solar 1.1
5     #
6     # Syslog-ng configuration file, compatible with default hardened installations.
7     #
8    
9 solar 1.5 options {
10     chain_hostnames(off);
11     sync(0);
12     stats(43200);
13     };
14    
15     #options {
16     # chain_hostnames(off);
17     # sync(0);
18     # stats(43200);
19     # long_hostnames(off);
20     # use_dns(no);
21     # create_dirs(yes);
22     #};
23 solar 1.1
24     source src { unix-stream("/dev/log"); internal(); };
25 spb 1.2 source kernsrc { file("/proc/kmsg"); };
26 solar 1.5
27 solar 1.1 #source net { udp(); };
28 solar 1.5 #log { source(net); destination(net_logs); };
29     #destination net_logs { file("/var/log/HOSTS/$HOST/$YEAR$MONTH$DAY.log"); };
30 solar 1.1
31     destination authlog { file("/var/log/auth.log"); };
32     destination syslog { file("/var/log/syslog"); };
33     destination cron { file("/var/log/cron.log"); };
34     destination daemon { file("/var/log/daemon.log"); };
35     destination kern { file("/var/log/kern.log"); file("/dev/tty12"); };
36     destination lpr { file("/var/log/lpr.log"); };
37     destination user { file("/var/log/user.log"); };
38     destination uucp { file("/var/log/uucp.log"); };
39     #destination ppp { file("/var/log/ppp.log"); };
40     destination mail { file("/var/log/mail.log"); };
41    
42     destination avc { file("/var/log/avc.log"); };
43     destination audit { file("/var/log/audit.log"); };
44     destination pax { file("/var/log/pax.log"); };
45     destination grsec { file("/var/log/grsec.log"); };
46    
47     destination mailinfo { file("/var/log/mail.info"); };
48     destination mailwarn { file("/var/log/mail.warn"); };
49     destination mailerr { file("/var/log/mail.err"); };
50    
51     destination newscrit { file("/var/log/news/news.crit"); };
52     destination newserr { file("/var/log/news/news.err"); };
53     destination newsnotice { file("/var/log/news/news.notice"); };
54    
55     destination debug { file("/var/log/debug"); };
56     destination messages { file("/var/log/messages"); };
57     destination console { usertty("root"); };
58     destination console_all { file("/dev/tty12"); };
59     #destination loghost { udp("loghost" port(999)); };
60    
61     destination xconsole { pipe("/dev/xconsole"); };
62    
63     filter f_auth { facility(auth); };
64     filter f_authpriv { facility(auth, authpriv); };
65     filter f_syslog { not facility(authpriv, mail); };
66     filter f_cron { facility(cron); };
67     filter f_daemon { facility(daemon); };
68     filter f_kern { facility(kern); };
69     filter f_lpr { facility(lpr); };
70     filter f_mail { facility(mail); };
71     filter f_user { facility(user); };
72 solar 1.4 filter f_uucp { facility(uucp); };
73 solar 1.1 #filter f_ppp { facility(ppp); };
74     filter f_news { facility(news); };
75     filter f_debug { not facility(auth, authpriv, news, mail); };
76     filter f_messages { level(info..warn)
77     and not facility(auth, authpriv, mail, news); };
78     filter f_emergency { level(emerg); };
79    
80     filter f_info { level(info); };
81    
82     filter f_notice { level(notice); };
83     filter f_warn { level(warn); };
84     filter f_crit { level(crit); };
85     filter f_err { level(err); };
86    
87     filter f_avc { match(".*avc: .*"); };
88     filter f_audit { match("^audit.*") and not match(".*avc: .*"); };
89     filter f_pax { match("^PAX:.*"); };
90     filter f_grsec { match("^grsec:.*"); };
91    
92     log { source(src); filter(f_authpriv); destination(authlog); };
93     log { source(src); filter(f_syslog); destination(syslog); };
94     log { source(src); filter(f_cron); destination(cron); };
95     log { source(src); filter(f_daemon); destination(daemon); };
96     log { source(kernsrc); filter(f_kern); destination(kern); };
97     log { source(src); filter(f_lpr); destination(lpr); };
98     log { source(src); filter(f_mail); destination(mail); };
99     log { source(src); filter(f_user); destination(user); };
100     log { source(src); filter(f_uucp); destination(uucp); };
101     log { source(kernsrc); filter(f_pax); destination(pax); };
102     log { source(kernsrc); filter(f_grsec); destination(grsec); };
103     log { source(kernsrc); filter(f_audit); destination(audit); };
104     log { source(kernsrc); filter(f_avc); destination(avc); };
105     log { source(src); filter(f_mail); filter(f_info); destination(mailinfo); };
106     log { source(src); filter(f_mail); filter(f_warn); destination(mailwarn); };
107     log { source(src); filter(f_mail); filter(f_err); destination(mailerr); };
108     log { source(src); filter(f_news); filter(f_crit); destination(newscrit); };
109     log { source(src); filter(f_news); filter(f_err); destination(newserr); };
110     log { source(src); filter(f_news); filter(f_notice); destination(newsnotice); };
111     log { source(src); filter(f_debug); destination(debug); };
112     log { source(src); filter(f_messages); destination(messages); };
113     log { source(src); filter(f_emergency); destination(console); };
114     #log { source(src); filter(f_ppp); destination(ppp); };
115     log { source(src); destination(console_all); };

  ViewVC Help
Powered by ViewVC 1.1.20