[osiris] Setting up syslog

Gary Doran GDoran at IntegrityPaymentSystems.com
Fri Nov 2 11:54:24 EDT 2007 

Then am I missing something?  I thought that Osiris is supposed to be able
to send change logs via syslog to a syslog server.  Email notification is
working fine but I need to be able to send changes to syslog server (along
with other things) to comply with PCI requirements.

-----Original Message-----
From: osiris-bounces+gdoran=integritypaymentsystems.com at lists.shmoo.com
[mailto:osiris-bounces+gdoran=integritypaymentsystems.com at lists.shmoo.com]
On Behalf Of Hari Sekhon
Sent: Friday, November 02, 2007 10:41 AM
To: Osiris Users
Subject: Re: [osiris] Setting up syslog

I don't think so, try to get a windows event log -> syslog implementation.

I've tried snare but found I preferred ntsyslog. More configurable and 
easily deployable.

According to the handbook, the syslog_facility is to decide against 
which facility the logs should be recorded, so not exactly what you want...

-h

Hari Sekhon



Gary Doran wrote:
> I am running a Windows implementation.  Should the syslog_facility be set
to
> ip address of where I want the syslog to be sent?
>
> -----Original Message-----
> From: osiris-bounces+gdoran=integritypaymentsystems.com at lists.shmoo.com
> [mailto:osiris-bounces+gdoran=integritypaymentsystems.com at lists.shmoo.com]
> On Behalf Of Hari Sekhon
> Sent: Friday, November 02, 2007 10:20 AM
> To: Osiris Users
> Subject: Re: [osiris] Setting up syslog
>
> This is not the job of Osiris but of your logging implementation.
>
> Tell your syslog daemon on the management station to log to the GFI via 
> syslog, see the man page for your syslog.conf or equiv (I prefer
syslog-ng).
>
> If you only want osiris stuff sent to GFI, use syslog-ng and filters.
>
> -h
>
> Hari Sekhon
>
>
>
> Gary Doran wrote:
>   
>> I need to setup Osiris to send all logging to GFI EventManager via 
>> syslog. GFI is listening on port 514 which is standard port. It is on 
>> the same computer as the Osiris Manager. Don't know if that makes any 
>> difference or not. Is there a way I can force a syslog message from 
>> Osiris to test things out?
>>
>> Gary
>>
>> ------------------------------------------------------------------------
>>
>> _______________________________________________
>> osiris mailing list
>> osiris at lists.shmoo.com
>> https://lists.shmoo.com/mailman/listinfo/osiris
>>     
> _______________________________________________
> osiris mailing list
> osiris at lists.shmoo.com
> https://lists.shmoo.com/mailman/listinfo/osiris
>
> _______________________________________________
> osiris mailing list
> osiris at lists.shmoo.com
> https://lists.shmoo.com/mailman/listinfo/osiris
>
>   
_______________________________________________
osiris mailing list
osiris at lists.shmoo.com
https://lists.shmoo.com/mailman/listinfo/osiris

More information about the osiris mailing list