Highest Voted 'journald' Questions - Server Fault Stack Exchange

1

vote

0 answers

redundant systemd-journal-remote for systemd-journal-upload instances

I'm using systemd-journal-upload on serveral nodes to forward their journals to a single systemd-journal-remote sink, loghost01: /var/log/journal ├── │ ├── system.journal │ └── user-1000.journal └── remote ├──…

asked Apr 23 '18 at 12:26

rypel

111
6

1

vote

1 answer

Remove nginx log prefix

I configured nginx to log in this format log_format lalala '$remote_addr - $remote_user '; access_log syslog:server=unix:/dev/log lalala; However, every line starts with: testserver nginx: Despite it being absent from my log format. This means…

nginx logging systemd journald

asked Aug 31 '17 at 14:07

LtWorf

123
8

1

vote

1 answer

journald: extract part of a system journal into the journald format (i.e. for use with journalctl)

I have a situation where it would be really useful to attach the relevant bits of the system logs to a bug ticket. The system in question uses journald and I rather like using journalctl to inspect the logs, so what I'd like to do is extract the…

journald journalctl

asked Jul 31 '17 at 10:38

Magnus

141
6

1

vote

0 answers

CoreOS logs flooded with "Unknown permission status for class system"

I am trying to debug an issue, and I was wondering if this rings a bell to anyone: My logs get flooded with audit: type=1107 audit(1479418315.344:1053): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='Unknown…

selinux coreos auditd journald

asked Nov 17 '16 at 21:47

m6a-uds

147
1
1
7

1

vote

1 answer

How to combat journal spam: unit-specific MaxLevel* settings?

I know about MaxLevelStore, MaxLevelSyslog, MaxLevelKMsg, MaxLevelConsole, MaxLevelWall but the problem with them is, they affect all units. Trouble is, not all developers *cough* kde *cough* gtk *cough* understand the difference between a warning…

systemd journald

asked Nov 15 '16 at 18:01

minj

119
2

1

vote

1 answer

Is there a way to configure journald.conf through cloud config on CoreOS?

Try to find a way to automatically set SystemMaxUse for systemd-journald.service. I knew I can set it in /etc/systemd/journald.conf manually. But it will restore to default after CoreOS updates in my experience. Also, configuring drop-ins in…

systemd coreos journald cloud-config

asked Jun 10 '16 at 16:49

zeck

121
2

1

vote

1 answer

Sending docker logs to logstash

I have a number of CoreOS servers on Amazon AWS and would like to collect events or logs from them and forward them onto my ELK stack provider logz.io. Being a little new to the ELK stack, I'm a little lost on how to best get the data out. It was…

elasticsearch logstash coreos journald

asked Apr 13 '16 at 21:45

hookenz

14,472
23
88
143

1

vote

2 answers

Referencing journald fields when forwarding messages to syslog-ng

How can I change my syslog-ng template so that when the log originates from a systemd service / unit, the log message will include the unit's name? Using ${PROGRAM} just shows the name of the executable that the systemd service called / that the…

syslog systemd syslog-ng journald

asked Feb 20 '16 at 20:59

BSchlinker

340
2
3
12

1

vote

0 answers

Journald: give users access to specific unit's logs

I'm taking care of a server (Debian Jessie) that several developers use for deploying and managing their work. Now there is a script on this server (managed by one of the developers) that does some regular maintenance stuff and therefore should run…

syslog systemd journald

asked Dec 05 '15 at 15:09

sina

111
1

1

vote

0 answers

unable to query the systemd journal with journalctl

I'm using Red Hat Enterprise Application Platform 6.4.2.GA on following system: # cat /etc/redhat-release Red Hat Enterprise Linux Server release 7.1 (Maipo) # uname -a Linux X 3.10.0-229.7.2.el7.x86_64 #1 SMP Fri May 15 21:38:46 EDT 2015 x86_64…

redhat rhel7 journalctl journald

asked Aug 05 '15 at 16:35

alexus

13,112
32
117
174

1

vote

1 answer

Systemd service not logging

I have a systemd service. No logs appear from it despite my best efforts. This is the service file: [Unit] Description=Load Balancer [Service] WorkingDirectory=/home/lb ExecStart=/usr/lib/jvm/jdk-20/bin/java --enable-preview -jar…

logging systemd journald journalctl

asked May 13 '23 at 12:00

jurgen

111
2

1

vote

1 answer

Systemd service logs twice when it stops & starts. Anyway to disable?

I have a systemd (v249) service (my-script.service) which is run every minute by another systemd timer (my-script.timer). Everything's working fine. But systemd logs (to it's journald & thence to /var/log/syslog) the following 2 lines saying that it…

systemd journald

asked Aug 11 '22 at 09:52

Amandasaurus

31,471
65
192
253

1

vote

0 answers

stop kernel audit messages logged in syslog without disabling auditing

OS: CentOS 7 I am trying to figure out how audit (kaudit) events are logged in /var/log/messages. I have enabled audit=1 in grub which means when the server boots, kernel auditing is enabled. This is the desired state for the particular system and…

systemd rsyslog audit auditd journald

asked Nov 25 '21 at 12:05

giomanda

1,754
4
21
30

1

vote

0 answers

Delete old SSH session recordings

Recently I've been testing SSH Session recording in Fedora + Cockpit as a method of auditing. This has been working pretty well, but it records too much information, and more importantly, picked up a zfs send transfer, which filled the journald…

ssh logging systemd journald

asked Mar 14 '21 at 09:15

Alex

389
9
23

1

vote

0 answers

Connecting to systemd service's standard output/error

I have a simple systemd service that runs for some time and then exits. It usually gets triggered by a systemd timer but sometimes I want to run it manually (well, from a script). The problem is - I need that script to output to terminal whatever my…

systemd journald

asked Nov 30 '20 at 18:27

Discussian

11
1

Questions tagged [journald]