Menu
▾
▴
Re: [Openvpn-users] logs entries not as openvpn user
|
From: Jochen B. <Joc...@bi...> - 2025-09-09 09:11:01
|
On 09.09.25 07:32, Gert Doering wrote:
> According to "man logger", this is what is running under...
>
> -t tag Mark every line in the log with the specified tag rather than the
> default of current login name. Use -t tag[N] to insert specific
> decimal process id instead of id of logger.
>
> ... but it could be a double uid in /etc/passwd
I'd recommend to have the lines in the helper script changed to look
like, e.g.,
logger -t serverlocal-events -p auth.info --id=$$ -- "$common_name ..."
because
a) as you noticed, naming the script/service is usually more specific
than the user(id) it's run under ;-)
b) adapt the "-p" so that the lines appear wherever they're the easiest
to find / correlate with OpenVPN's usual log output
c) "--id=$$" is probably still useless in this context, but logging the
PID of the "logger" command/child run from a shell script is pretty
much *guaranteed* to *always* be useless
d) "--" to guard against $common_name starting with a "-"
Kind regards,
--
Jochen Bern
Systemingenieur
Binect GmbH
|
