Quote:
Originally Posted by Tarikc
I'm taking a wild guess.
But system-emergency-00005 is very urgent for real and you really need to know about it.
So the system send it in front of you to take action.
Cheers!
|
Thank you sir for the nudge in the right direction! You're absolutely correct and I apparently lied about my syslog-ng.conf containing no stdout clauses.
Offending lines in syslog-ng.conf:
Code:
destination d_mlal { usertty("*"); };
filter f_emerg { level(emerg); };
log { source(s_all); filter(f_emerg); destination(d_mlal); };
It blows my mind I have never ran into this before though. Either these SYN flood logs have never been generated before (doubtful) or they never generated in the volume they're generating now so I didn't notice them previously (more likely).
In any case, problem solved.