In continuatin of this discussion.
We are using customlog which is a singleline log, does syslog directive work in mod-security configuration file, as indicated below.
SecCustomLog  formatString syslog:remote-host
Thanks in advance,

Ivan Ristic <> wrote:
On 7/12/06, Johnny GoLightly wrote:
> Hi,
> Our Apache Log syntax is
> ErrorLog Syslog:local7
> Can we have the modsecurity directive for logging be the following or
> similar?
> SecAuditLog Syslog:local6
> In this way we can log locally and to a remote syslog?

No, not really. Syslog is line oriented but the ModSecurity audit log
spans multiple lines (and it is binary).

Included with ModSecurity Console is a Perl script that uses piped
logging to connect to ModSecurity and transmits the audit log entry to
a central logging host. Feel free to use it if you wish (it's not an
official part of the console).

Ivan Ristic, Technical Director
Thinking Stone,
ModSecurity: Open source Web Application Firewall

Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
mod-security-users mailing list

Talk is cheap. Use Yahoo! Messenger to make PC-to-Phone calls. Great rates starting at 1¢/min.