As a side note: this is just a thread part of my
main thread which is destinated at securing debian!
Code:
----------------------------------------------------------------------
configured syslog [ /etc/syslog.conf ]
----------------------------------------------------------------------
# /etc/syslog.conf Configuration file for syslogd.
#
# For more information see syslog.conf(5)
# manpage.
# --------------------------------------------------------------------
# logging by priority
# --------------------------------------------------------------------
*.=crit /var/log/critical.log
*.=emerg /var/log/emergency.log
*.=err /var/log/error.log
*.=info;\
cron.none;\
mail.none; /var/log/info.log
# --------------------------------------------------------------------
# --------------------------------------------------------------------
# logging by facility
# --------------------------------------------------------------------
auth,authpriv.* /var/log/auth.log
cron.* -/var/log/cron.log
daemon.* -/var/log/daemon.log
kern.* -/var/log/kern.log
lpr.* -/var/log/lpr.log
mail.* -/var/log/mail.log
news.crit /var/log/news/news.crit
news.err /var/log/news/news.err
news.notice -/var/log/news/news.notice
user.* -/var/log/user.log
uucp.* -/var/log/uucp.log
# --------------------------------------------------------------------
# --------------------------------------------------------------------
# logging to the virtual consoles (= display)
# --------------------------------------------------------------------
daemon,mail.*;\
news.=crit;news.=err;news.=notice;\
*.=debug;*.=info;\
*.=notice;*.=warn /dev/tty8
# --------------------------------------------------------------------
----------------------------------------------------------------------
Logging to different files makes it easier for parsing through log files, etc. It just eases the administration IMHO. If you have any questions regarding this configuration just post!