/usr/share/doc/samhain/manual.html/syslogdetails.html is in samhain 4.1.4-2build1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 | <html><head><meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"><title>11. Syslog</title><link rel="stylesheet" type="text/css" href="docbook.css"><meta name="generator" content="DocBook XSL Stylesheets V1.78.1"><link rel="home" href="index.html" title="The Samhain Host Integrity Monitoring System"><link rel="up" href="basic-configuration.html" title="Chapter 4. Configuration of logging facilities"><link rel="prev" href="nagios.html" title="10. Using samhain with nagios"><link rel="next" href="sqldetails.html" title="12. SQL Database"></head><body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF"><!--#if expr="! ($HTTP_USER_AGENT = /MSIE/)"--><!--#include virtual="/resources/ssi/header.html"--><!--#endif--><div class="navheader"><table width="100%" summary="Navigation header"><tr><th colspan="3" align="center">11. Syslog</th></tr><tr><td width="20%" align="left"><a accesskey="p" href="nagios.html">Prev</a> </td><th width="60%" align="center">Chapter 4. Configuration of logging facilities</th><td width="20%" align="right"> <a accesskey="n" href="sqldetails.html">Next</a></td></tr></table><hr></div><div class="sect1"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a name="syslogdetails"></a>11. Syslog</h2></div></div></div><p>
<span class="application">samhain</span> will
translate its own severities into
<span class="emphasis"><em>syslog priorities</em></span> as follows:</p><div class="informaltable"><table border="1"><colgroup><col><col></colgroup><thead><tr><th>Severity</th><th>Syslog priority</th></tr></thead><tbody><tr><td>debug</td><td>LOG_DEBUG</td></tr><tr><td>info</td><td>LOG_INFO</td></tr><tr><td>notice</td><td>LOG_NOTICE</td></tr><tr><td>warn</td><td>LOG_WARNING</td></tr><tr><td>mark</td><td>LOG_ERR</td></tr><tr><td>err</td><td>LOG_ERR</td></tr><tr><td>crit</td><td>LOG_CRIT</td></tr><tr><td>alert</td><td>LOG_ALERT</td></tr></tbody></table></div><p>Messages larger than 959 chars will be split into
several messages. By default,
<span class="application">samhain</span> will use
the identity 'samhain', the
<span class="emphasis"><em>syslog facility</em></span> LOG_AUTHPRIV, and will
log its PID (process identification number) in addition to
the message.</p><p>The syslog facility can be modified via the directive
<span class="command"><strong>SyslogFacility=
<em class="replaceable"><code>LOG_xxx</code></em></strong></span> in the
<span class="emphasis"><em>Misc</em></span> section of the configuration
file.</p><p>The syslog priority to be used for heartbeat messages
(timestamps) can be selected with the directive
<span class="command"><strong>SyslogMapStampTo=
<em class="replaceable"><code>LOG_xxx</code></em></strong></span> in the
<span class="emphasis"><em>Misc</em></span> section of the configuration file.
The default is LOG_ERR.</p></div><div class="navfooter"><hr><table width="100%" summary="Navigation footer"><tr><td width="40%" align="left"><a accesskey="p" href="nagios.html">Prev</a> </td><td width="20%" align="center"><a accesskey="u" href="basic-configuration.html">Up</a></td><td width="40%" align="right"> <a accesskey="n" href="sqldetails.html">Next</a></td></tr><tr><td width="40%" align="left" valign="top">10. Using samhain with nagios </td><td width="20%" align="center"><a accesskey="h" href="index.html">Home</a></td><td width="40%" align="right" valign="top"> 12. SQL Database</td></tr></table></div><!--#if expr="! ($HTTP_USER_AGENT = /MSIE/)"--><!--#include virtual="/resources/ssi/footer.html"--><!--#endif--></body></html>
|