Folders will look like this:
Code: Select all
/var/log/sudo-io/user1
/var/log/sudo-io/user2
/var/log/sudo-io/user3
Then, under each folder, stuff looks like this: Is this possible?
Adding random logs/files question
Adding random logs/files question
Ok, we have sudo-io installed on a list of hosts that stores any sudo sessions. I want to send all these files to NLS, but not sure if this is possible because of the random folders.
Folders will look like this:
With userx replaced by the actual username of the admin.
Then, under each folder, stuff looks like this: Is this possible?
Folders will look like this:
Then, under each folder, stuff looks like this: Is this possible?
You do not have the required permissions to view the files attached to this post.
2 of XI5.6.14 Prod/DR/DEV - Nagios LogServer 2 Nodes
See my projects on the Exchange at BanditBBS - Also check out my Nagios stuff on my personal page at Bandit's Home and at github
See my projects on the Exchange at BanditBBS - Also check out my Nagios stuff on my personal page at Bandit's Home and at github
Re: Adding random logs/files question
With newer versions of rsyslog, you should be able to do wildcard matching for files (8.5+), however it does not support wildcard directories, so you would need to manually add each user folder and 01 - 0A folder manually.
See - http://www.rsyslog.com/doc/master/confi ... mfile.html and http://www.slideshare.net/rainergerhard ... tor-imfile for references
See - http://www.rsyslog.com/doc/master/confi ... mfile.html and http://www.slideshare.net/rainergerhard ... tor-imfile for references
Former Nagios Employee
Re: Adding random logs/files question
That's not going to work since anytime someone got hired we'd have to remember, and well, human interaction sucks and people forget! Also, not that I spent time on this I get told those aren't plain text files anyway.
So now I am just researching a way to get commands typed written to the syslog.....any easy hints appreciated, finding some crazy links so far
So now I am just researching a way to get commands typed written to the syslog.....any easy hints appreciated, finding some crazy links so far
2 of XI5.6.14 Prod/DR/DEV - Nagios LogServer 2 Nodes
See my projects on the Exchange at BanditBBS - Also check out my Nagios stuff on my personal page at Bandit's Home and at github
See my projects on the Exchange at BanditBBS - Also check out my Nagios stuff on my personal page at Bandit's Home and at github
Re: Adding random logs/files question
With my testing environment, it looks like a fairly sizable amount of paths even if we're just accounting for the bottom log file of each tree.
One way to do this might be with a cron job that grabs the output of sudoreplay -l and ships the events that happened in the last (now - cron_interval) either to /var/log/messages via logger or directly to NLS via netcat.
One way to do this might be with a cron job that grabs the output of sudoreplay -l and ships the events that happened in the last (now - cron_interval) either to /var/log/messages via logger or directly to NLS via netcat.
Former Nagios employee
https://www.mcapra.com/
https://www.mcapra.com/