The rocket-fast system for log processing
We have released rsyslog 8.21.0. This release is mostly for maintenance. There was a big change to how internal messages are handled. These are no longer logged via the internal bridge, but via the syslog() API call. For regular users, this should make not too much difference. Additionaly, the TLS syslog error messages have been […]
Version 8.8.0 [v8-stable] 2015-02-24 omkafka: add support for dynamic topics and auto partitioning Thanks to Tait Clarridge for the patches. imtcp/imptcp: support for broken Cisco ASA TCP syslog framing omfwd: more detailled error messages in case of UDP send error TLS syslog: enable capability to turn on GnuTLS debug logging This provides better diagnostics in […]
Version 7.4.2 [v7.4-stable] 2013-07-04 bugfix: in RFC5425 TLS, multiple wildcards in auth could cause segfault bugfix: RainerScript object required parameters were not properly checked – this clould result to segfaults on startup if parameters were missing. bugfix: double-free in omelasticsearch closes: http://bugzilla.adiscon.com/show_bug.cgi?id=461 a security advisory for this bug is available at: http://www.lsexperts.de/advisories/lse-2013-07-03.txt PLEASE NOTE: This […]
This is a maintenance release, consisting primarily of bug fixes. It also provides a fix for a potential security issue in omelasticsearch. Please note that the security issue only exists in non-default configuration if the “errorfile” parameter was specified. ChangeLog: http://www.rsyslog.com/changelog-for-7-4-2-v7-stable/ Download: http://www.rsyslog.com/rsyslog-7-4-2-v7-stable/ As always, feedback is appreciated. Best regards, Florian Riedl
This release opens the new 7.5 development branch. Most importantly, this version provides certificate-based authentication for RELP. It also includes mmfields, a module that can be used to parse CEF and other similar delimited formats. BSD-support has been improved and imjournal has been hardened to prevent corrupt journal databases from spamming the system too much. […]
In this guide, we want to describe how to setup rsyslog with a RELP connection which is to be secured with TLS. For this guide you need at least rsyslog 7.5.1 and librelp 1.1.3 as well as gnutls 2.10.0 or above. These need to be installed on the server as well on the clients. The […]
Version 7.5.1 [devel] 2013-06-26 librelp 1.1.3 is required – older versions can lead to a segfault add mmfields, which among others supports easy parsing of CEF messages omrelp: * new parameter “compression.prioritystring” to control encryption parameters used by GnuTLS imrelp: * new parameter “compression.dhbits” to control the number of bits being used for Diffie-Hellman key […]
This article will show you, how to use simple tls encryption with the RELP protocol for sending and receiving syslog messages. We basically need two machines, both running at least rsyslog 7.3.16. In addition to rsyslog, we also need the most current version of librelp. General information When installing rsyslog, make sure to enable the […]
In this guide, we want to describe, how to use the RSyslog Windows Agent with TLS encrypted syslog. This specific part will describe the setup steps for receiving syslog from a Linux rsyslog installation. First, as a preliminary, you should read the guide from the rsyslog documentation for “Encrypting Syslog Traffic with TLS (SSL)”. It […]
Hi all, We have just released rsyslog 4.7.3, a member of the v4-devel branch. 4.7.3 adds some new functions as well as some bugfixes.