-
Notifications
You must be signed in to change notification settings - Fork 10
Log files
pyllyukko edited this page Sep 11, 2016
·
12 revisions
| Path | Program | Configuration | Rotation |
|---|---|---|---|
/var/log/modsec_audit.log |
ModSecurity | SecAuditLog | |
/var/log/pacct |
Process accunting | ||
/var/log/boot |
bootlogd | ||
/var/log/sbopkg/sbopkg-build-log |
sbopkg | ||
/var/log/httpd/* |
httpd | /etc/logrotate.d/httpd |
|
/var/log/sulog |
su |
/etc/login.defs:SULOG_FILE
|
|
/var/log/clamav/* |
ClamAV | clamav.logrotate | |
/var/log/sudo.log |
sudo |
/etc/sudoers:logfile
|
|
/var/log/dmesg |
/etc/rc.d/rc.M |
||
/var/log/apcupsd.events |
apcupsd | apcupsd.logrotate | |
/var/log/{messages,syslog,debug,secure,cron,maillog,spooler} |
sysklogd | /etc/logrotate.d/syslog |
|
/var/log/rkhunter.log |
rkhunter | ||
/var/log/rkhunter.log.old |
rkhunter | ||
/var/log/rkhunter.log.YYYY-MM-DD_HH:MM:SS |
rkhunter | ||
/var/log/Xorg.0.log |
X.Org | ||
/var/log/Xorg.0.log.old |
X.Org | ||
/var/log/{b,w}tmp |
Shadow suite | ||
/var/run/utmp |
Shadow suite | ||
/var/log/{fail,last}log |
Shadow suite | ||
/var/log/lynis{-report.dat,.log} |
Lynis | ||
/var/log/tiger/* |
Tiger | ||
/var/log/{packages,setup}/* |
pkgtools | ||
/var/log/removed_{packages,scripts}/* |
pkgtools | ||
/var/log/audit/audit.log |
auditd |
/etc/audit/auditd.conf:log_file
|
|
/var/log/cups/ |
Cups | ||
/var/log/ConsoleKit/ |
ConsoleKit | ||
/var/log/sa/* |
System accounting | ||
/var/log/{usr,sav}acct |
Process accounting | ||
/var/log/uucp/* |
uucp |