Re: [mod-security-users] ModSecurity syslog
Brought to you by:
victorhora,
zimmerletw
From: Kim <kim...@ya...> - 2006-07-24 04:07:27
|
Where would I find this logger script. syslog api is very simple, if we can do it from mod-security code it would be faster I think. For the time being, we are doing proof of concept, logger would be sufficient, but our boss would like a faster approach. Any pointers ? Thanks in advance. Ivan Ristic <iva...@gm...> wrote: On 7/23/06, Kim wrote: > > > In continuatin of this discussion. > > We are using customlog which is a singleline log, does syslog directive work > in mod-security configuration file, as indicated below. > > SecCustomLog formatString syslog:remote-host Well you can't just invent directive names and expect them to work. The ModSecurity error messages will be in the Apache error log - why don't you simply send that to syslog? You can send CustomLog to syslog but you'd need to use piped log with an external script (actually you can just invoke the "logger" utility). -- Ivan Ristic, Technical Director Thinking Stone, http://www.thinkingstone.com ModSecurity: Open source Web Application Firewall __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com |