technology

I started using ZFS on my Linux box around 1 year ago, after I’ve taken part on a Sun training where BalaBit (my workplace) sent me. ZFS astonished me. It combined the whole RAID, LVM and file system thing together and made it more pleasant with constant data integration check, and powerful caching. I felt [...]

I think, it’s a frequent question how to increase the performance of syslog-ng. In the current post, I try to introduce how to set up syslog-ng to reach the best performance, if it receives messages from the network via TCP and stores them into file. These settings will affect to syslog-ng working as a server. [...]

I think, it’s a frequent question how to increase the performance of syslog-ng. In the current post, I try to introduce how to set up syslog-ng to reach the best performance, if it receives messages from the network via TCP and stores them into file. These settings will affect to syslog-ng working as a server. [...]

syslog-ng Premium Edition performance measurements results

syslog-ng Premium Edition performance measurements results

There’s a good writeup on syslog-ng correllation functions on LWN. Since it is currently for subscriber’s only, here’s a link that you can use to see until it is published. http://lwn.net/SubscriberLink/424459/dc2ec3fee7d80d3b/ LWN is a great publication by the way, so consider subscribing if you can.

There’s a good writeup on syslog-ng correllation functions on LWN. Since it is currently for subscriber’s only, here’s a link that you can use to see until it is published. http://lwn.net/SubscriberLink/424459/dc2ec3fee7d80d3b/ LWN is a great publication by the way, so consider subscribing if you can.

A short howto with step by step instructions on how to write a template function for syslog-ng open source edition.

A short howto with step by step instructions on how to write a template function for syslog-ng open source edition.

I will not tell you any secret by saying I use virtual machines a lot for testing different support cases I come across. I have used virtualization before but these cases were mostly limited to trying out different Linux / Unix distributions. Now my job has other aspects. For example if I would like to [...]

I will not tell you any secret by saying I use virtual machines a lot for testing different support cases I come across. I have used virtualization before but these cases were mostly limited to trying out different Linux / Unix distributions. Now my job has other aspects. For example if I would like to [...]

The interpretation of a tale of Yore, of syslog-ng, threading and a bright future.

The interpretation of a tale of Yore, of syslog-ng, threading and a bright future.

Hi, We have published the latest edition of The syslog-ng Premium Edition 4.0 Administrator Guide. This is again the result of a fruitful cooperation between the syslog-ng team and the technical writer team, and a long, but useful review period. The documents are now available on the BalaBit Documentation Page in PDF, HTML and single-page [...]

The base of our appliance products, SCB and SSB are heavily customized Ubuntu distributions. Most of them are based on the Dapper release, but starting with SCB 3.1, we started migrating them to the newest LTS, Lucid Lynx. Doing a direct upgrade from a 4 years old OS and switching from 32-bit to 64 at [...]

I am happy to tell you that Gentoo Linux now contains the latest syslog-ng open source edition version, which is 3.2.2. Although it is currently masked, you can easily install it with the following commands. echo -e “\n=app-admin/syslog-ng-3.2.2″ >> /etc/portage/package.unmask echo -e “\n=app-admin/syslog-ng-3.2.2″ >> /etc/portage/package.keywords emerge -avu syslog-ng It has a lot of great features, [...]

I’ve made a round of syslog-ng releases in the last couple of weeks. syslog-ng 3.0.10 [changelog] syslog-ng 3.1.4 [changelog] syslog-ng 3.2.2 [changelog] From these 3.0.10 and 3.1.4 are quite similar, as they carry the almost the same set of bugfixes, which you can find in the respective changelogs. 3.2.2 is however different, it is a [...]

It’s been a while since I wrote my last blogpost here. So sorry about it, it’s been quite hectic here… anyway I brought you something intresting. During my daily work I do a lot of log classification on logs provided by the customers. These logs are mostly either from our log server appliance or from [...]

Update: The driver has a homepage of its own at http://asylum.madhouse-project.org/projects/syslog-ng/mongodb/ Though I had no chance to look at it yet, Algernon has posted a MongoDB destination driver for syslog-ng. I can’t wait to have a closer look at it, hopefully I get a chance in the coming days, but until then be sure to [...]

In which the interpreter finds another, more suitable interpretation, and proceeds to make tea in honor of Master Wall.

Hi I would like to answer a frequently question in this post: “Why should I choose syslog-ng Premium Edition (PE) instead of syslong-ng Open Source Edition (OSE)?” I think all of you have thought about it and the benefits of Premium Edition. If you compare the feature list of PE with OSE, the benefits may [...]

First of all, I owe my readers an apology: the first time I posted a Revelation, I already was halfway through the interpretation, thus it came out reasonably fast. This time, however, the last Revelation was released before I even started working on the Interpretation. As such, the work took much longer than anticipated. However, [...]

Continuing our survey to get a picture about how you use syslog-ng, our next poll is online. The question is, how many different platforms do you use syslog-ng on? Please count every distribution or architecture separately. For example, if you are running syslog-ng on 200 identical servers that all run the 64-bit version of RHEL [...]

I am not telling you any secrey by saying that the GPL version of Zorp Gateway as precompiled package is currently only availabe in Debian Squeeze, however since the latest GPL version was made it into public not so long ago, I was being curious about compiling and installing it under my favourite Linux based [...]

I have created a very simple munin script (plugin;-), which simply displays our message classes and it vizualizes what is happening on our system. Nothing serious! It simple counts how many message was created since the last run. You can generate such figures: This figure shows a portscanning attack anyay. And this is the script, [...]

A következő cikkem jelent meg a Nonstop Üzlet-en: A korszerű tűzfalak képesek rejtjelezett csatornák ellenőrzésére is. Ez elsőre szentségtörésnek tűnik, mégsem az. Lássuk miért! A legelején fontos tisztázni, hogy miért is használunk rejtjelezett csatornákat? Azzal talán mindenki tisztában van, hogy az ilyen csatornák legfőbb feladata az átvitel bizalmasságának megőrzése, másként fogalmazva biztosítani azt, hogy valóban [...]

If you create a new syslog-ng configuration or upgrade from a previous version of syslog-ng then start syslog-ng you can receive warning messages like this: root@thor-t410:/opt/syslog-ng# sbin/syslog-ng -F WARNING: Configuration file has no version number, assuming syslog-ng 2.1 format. Please add @version: maj.min to the beginning of the file; WARNING: template: the meaning of the [...]

The administrator guide for version 3.2 of syslog-ng OSE is available at the BalaBit Documentation Page. Actually, it is mostly the same as the latest draft, except that I incorporated Bazsi’s comments and corrected some minor typos and errors. The main new features of syslog-ng OSE 3.2 are listed in the Summary of changes section [...]

Recenty I got some problems with my Android phone, which is a Samsung Galaxy Spica by the way, and I thought it might be useful to see the phone’s logs but not on its small screen but on my desktop system. Suddenly I got an idea. Hey what if I can use syslog-ng to collect [...]