146403 – sys-apps/logwatch ignores the iptables lines from /var/log/messages

Bug 146403 - sys-apps/logwatch ignores the iptables lines from /var/log/messages

Summary: sys-apps/logwatch ignores the iptables lines from /var/log/messages

Status:	RESOLVED NEEDINFO

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	[OLD] Core system (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo Kernel Bug Wranglers and Kernel Maintainers

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2006-09-05 08:23 UTC by Dale Carstensen
Modified:	2006-09-16 20:12 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Dale Carstensen 2006-09-05 08:23:10 UTC

The daily logwatch run ignores the iptables lines from /var/log/messages.
The "kernel" service of logwatch would find them, if the lines had the
string " kernel: " after the time and host of them, as my Red Hat 9 2.4.20
log has.

Comment 1 Daniel Drake (RETIRED) gentoo-dev

2006-09-08 06:03:48 UTC

This is an issue with your system logger, which one are you using?

The kernel does not prefix it's own messages with "kernel: " -- this is handled by whatever logger reads kmsg and puts it in /var/log/messages. So this is either a bug in logwatch or a bug in your system logger.

Comment 2 Daniel Drake (RETIRED) gentoo-dev

2006-09-16 20:12:17 UTC

See comment #1