Idea Details

Enhancment of selogrd forwarding to syslog

Last activity 06-13-2019 09:40 AM
sruud's profile image
04-08-2016 01:36 AM

Today there is only possible to change severity level for messages forwarded to syslog. to me able to easier separate security messages sent to syslog there whould be great to also include possiblity to sett the faiclity on the messages as wel.
today the config in selogrd.cfg looks like this:

Rule#1
syslog LOG_INFO
.

Which forward all messages to syslog "tagged" as daemon.info
I would request that this config should aslo include the possibility to change the daemon facility level, the config could look some thing like this:

Rule#1
syslog LOG_LOCAL3.INFO
.

which forward all messages to syslog "tagged" as local3.info

This would make it a lot easier to configure syslog to either put only AccessControl/ControlMinder/PIM (what ever the product will be named in the future) messages into a file or to forward it directly of the machine to an central server.
whitout interfere with other syslog messages "tagged" with daemon.*