In continuatin of this discussion.
 
We are using customlog which is a singleline log, does syslog directive work in mod-security configuration file, as indicated below.
 
SecCustomLog  formatString syslog:remote-host
 
Thanks in advance,


Ivan Ristic <ivan.ristic@gmail.com> wrote:
On 7/12/06, Johnny GoLightly wrote:
>
> Hi,
>
> Our Apache Log syntax is
> ErrorLog Syslog:local7
>
> Can we have the modsecurity directive for logging be the following or
> similar?
> SecAuditLog Syslog:local6
> In this way we can log locally and to a remote syslog?

No, not really. Syslog is line oriented but the ModSecurity audit log
spans multiple lines (and it is binary).

Included with ModSecurity Console is a Perl script that uses piped
logging to connect to ModSecurity and transmits the audit log entry to
a central logging host. Feel free to use it if you wish (it's not an
official part of the console).

--
Ivan Ristic, Technical Director
Thinking Stone, http://www.thinkingstone.com
ModSecurity: Open source Web Application Firewall


-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
mod-security-users mailing list
mod-security-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-security-users


Talk is cheap. Use Yahoo! Messenger to make PC-to-Phone calls. Great rates starting at 1¢/min.