Patch to add support for more syslog facilities

Patch to add support for more syslog facilities

[Aleksander Adamowski]

[-- Attachment #1: Type: text/plain, Size: 349 bytes --]

The set of syslog facilities that can be configured for the builting syslog
plugin is pretty limited (LOG_LOCAL0 - LOG_LOCAL9).

This patch adds a bunch of other facilities that might make sense for some
people (like us). Facilities that wouldn¹t make any sense (like LOG_NEWS or
LOG_LPR) are still left out.



Best Regards,
--
  Olo


[-- Attachment #2: audispd_syslog_facilities.patch --]
[-- Type: application/octet-stream, Size: 834 bytes --]

Index: audisp/audispd-builtins.c
===================================================================
--- audisp/audispd-builtins.c	(revision 1150)
+++ audisp/audispd-builtins.c	(working copy)
@@ -302,6 +302,16 @@
 				facility = LOG_LOCAL6;
 			else if (strcasecmp(conf->args[i], "LOG_LOCAL7") == 0)
 				facility = LOG_LOCAL7;
+			else if (strcasecmp(conf->args[i], "LOG_AUTH") == 0)
+				facility = LOG_AUTH;
+			else if (strcasecmp(conf->args[i], "LOG_AUTHPRIV") == 0)
+				facility = LOG_AUTHPRIV;
+			else if (strcasecmp(conf->args[i], "LOG_DAEMON") == 0)
+				facility = LOG_DAEMON;
+			else if (strcasecmp(conf->args[i], "LOG_SYSLOG") == 0)
+				facility = LOG_SYSLOG;
+			else if (strcasecmp(conf->args[i], "LOG_USER") == 0)
+				facility = LOG_USER;
 			else {
 				syslog(LOG_ERR, 
 					"Unknown log priority/facility %s",

[-- Attachment #3: Type: text/plain, Size: 0 bytes --]

Re: Patch to add support for more syslog facilities

[Steve Grubb]

On Saturday, January 09, 2016 12:56:50 AM Aleksander Adamowski wrote:
> The set of syslog facilities that can be configured for the builting syslog
> plugin is pretty limited (LOG_LOCAL0 - LOG_LOCAL9).
> 
> This patch adds a bunch of other facilities that might make sense for some
> people (like us). Facilities that wouldn¹t make any sense (like LOG_NEWS or
> LOG_LPR) are still left out.

Applied. Thanks!

-Steve