Difference between revisions of "Log Files"
| Line 4: | Line 4: | ||
There are many log files produced by SME Server. Some are standard, some are generated by contributions. This page aims to bring together enough knowledge to understand what generates each log file, what they are for, and how to interpret them. | There are many log files produced by SME Server. Some are standard, some are generated by contributions. This page aims to bring together enough knowledge to understand what generates each log file, what they are for, and how to interpret them. | ||
| + | |||
| + | Most of the SME log files are created using D.J. Bernstein's [http://cr.yp.to/daemontools/multilog.html multilog]. | ||
| + | * Multilog logs to a file named 'current' in a subdirectory named for the service | ||
| + | * Multilog records time as an "@" followed by "a precise timestamp". | ||
| + | * Pipe multilog output through '''tai64nlocal''' to have multilog's cryptic time stamp converted to a human-readable form: | ||
| + | tail -f /var/log/qpsmtpd/current | tai64nlocal | ||
| + | |||
| + | Some SME logs are still created using syslog or another process (not multilog). | ||
==== E-mail logfiles ==== | ==== E-mail logfiles ==== | ||
| Line 30: | Line 38: | ||
dnscache | dnscache | ||
iptables | iptables | ||
| − | iptraf | + | '''iptraf |
mysqld | mysqld | ||
nmbd | nmbd | ||
| Line 45: | Line 53: | ||
dhcpd | dhcpd | ||
dhcpcd | dhcpcd | ||
| + | dmesg | ||
pppoe | pppoe | ||
pptpd | pptpd | ||
Revision as of 15:04, 27 June 2007
Log Files
What they are and what they mean
There are many log files produced by SME Server. Some are standard, some are generated by contributions. This page aims to bring together enough knowledge to understand what generates each log file, what they are for, and how to interpret them.
Most of the SME log files are created using D.J. Bernstein's multilog.
- Multilog logs to a file named 'current' in a subdirectory named for the service
- Multilog records time as an "@" followed by "a precise timestamp".
- Pipe multilog output through tai64nlocal to have multilog's cryptic time stamp converted to a human-readable form:
tail -f /var/log/qpsmtpd/current | tai64nlocal
Some SME logs are still created using syslog or another process (not multilog).
E-mail logfiles
qmail imap imaps pop3 pop3s smtp-auth-proxy maillog qpsmtpd sqpsmtpd
HTTP logfiles
httpd httpd-admin squid squid.run qpdmtpd
System logfiles
messages dnscache iptables iptraf mysqld nmbd ntpd oidentd ppp yum tinydns wan vbox cron sshd flexbackup dhcpd dhcpcd dmesg pppoe pptpd spooler radius radiusd proftpd raidmonitor rpmpkgs sa samba secure rkhunter.log boot.log audit anaconda.log anaconda.syslog lastlog
Spam and virus
clamav clamd freshclam spamd
