ABOUT
Name:
Balázs Scheidler
Update on syslog-ng progress
Friday, March 29, 2013 @ 09:03 PM Author: Balázs Scheidler
It's been a while since I've last updated this blog. I'll try to concentrate a bit more here, so the updates related to syslog-ng development get out. Since the last post syslog-ng 3.4 was actually released. And we have started working on the 3.5 branch.There are already two features integrated into 3.5:support for reading ...
1 Comment
syslog-ng 3.4beta1 released
Friday, December 28, 2012 @ 04:12 PM Author: Balázs Scheidler
Just before christmas I've released syslog-ng 3.4.0beta1, hopefully the last before the final release of syslog-ng 3.4. You can find the list of changes since 3.4.0alpha3 here.Here's the teaser for those wondering what 3.4 can do for them in addition to 3.3:Junctions, channels and the improved configuration format allows specifying log processing rules at ...
Twitter activity
Thursday, July 19, 2012 @ 08:07 PM Author: Balázs Scheidler
I had very limited time recently to update this blog, however I've started some twitter activity where I can post my tiny little posts without having to re-read them a number of times.This makes it possible to _at least_ publish some syslog-ng updates, so in case you are interested, just follow @Bazsi771 or search ...
CEE prototype and a show-case for the new 3.4 features
Sunday, May 6, 2012 @ 09:05 PM Author: Balázs Scheidler
You may remember the Lumberjack project I wrote about earlier. It is an attempt to improve system logging by creating conventions and standards to cover structured logs in a general way.Since its inception, a lot of discussion happened on the lumberjack mailing list, a preliminary list of fields to be used got defined, ...
First alpha release of syslog-ng 3.4 published
Sunday, March 11, 2012 @ 02:03 PM Author: Balázs Scheidler
I've just uploaded the first release in the upcoming 3.4.x series. This is an incremental step over 3.3.x, continuing to enhance syslog-ng with features that allows more in-depth processing of messages.I consider the most important one the ability to freely combine different kind of processing elements (parser & rewrite rules and filters) with sources and/or ...
Project Lumberjack to improve Linux logging
Wednesday, February 29, 2012 @ 12:02 PM Author: Balázs Scheidler
In a lively discussion at the RedHat offices two weeks ago in Brno, a number of well respected individuals were discussing how logging in general, and Linux logging in particular could be improved. As you may have guessed I was invited because of syslog-ng, but representatives of other logging related projects were also in nice ...
syslog-ng git repo moved to github
Monday, January 16, 2012 @ 08:01 PM Author: Balázs Scheidler
I've been playing with github the last couple of months for git hosting, and since I like what I see and users seem to have found this out on their own, I figured this should be official.The git repository is being moved from their old git.balabit.hu location to:syslog-ng 3.3 http://github.com/bazsi/syslog-ng-3.3.gitsyslog-ng 3.4 http://github.com/bazsi/syslog-ng-3.4.gitOlder releases (like 3.2) ...
syslog-ng flexibility improvements
Sunday, January 15, 2012 @ 06:01 PM Author: Balázs Scheidler
Update: The syntax of this feature has slightly changed due to discussions on the mailing list (e.g. change the log keyword to channel), and I've updated it to use the current syntax.syslog-ng is often referred as a very flexible application when it comes to processing logs. Over the years however, I began to feel that ...
syslog-ng and the journal
Tuesday, December 6, 2011 @ 12:12 PM Author: Balázs Scheidler
There's an ongoing project to create a new logging subsystem for Linux, called the journal, by Lennart Poettering of PulseAudio & systemd fame. It is implemented as a core component of systemd, thus has a good chance to be integrated to all distributions that carry systemd: Fedora, openSUSE, and probably others.The vision and design is ...
syslog-ng Open Source Edition 3.3.1 released
Friday, October 7, 2011 @ 10:10 PM Author: Balázs Scheidler
I'm proud to announce that syslog-ng 3.3.1 has been released.It is an important release in a number of ways:syslog-ng architecture was completely revamped to scale properly in
today's multi-core environments. I've seen it process 800000 messages /
second in some scenarios.
following the licensing change in 3.2, it incorporates contributions
(code, testing & feedback) from 54 individuals.In total, the ...
netfilter.org says thanks
Saturday, August 6, 2011 @ 01:08 PM Author: Balázs Scheidler
You may not know, but I used to contribute to the Linux packet filtering subsystem called Netfilter: I primarily worked on transparent proxying, the technology needed for our proxy based firewall/gateway product, Zorp. If I remember correctly, we completely revamped that thing about 3 times, until it got integrated into the kernel.Because of ...
syslog-ng multithreaded performance
Saturday, July 30, 2011 @ 08:07 PM Author: Balázs Scheidler
It seems that the BalaBit syslog-ng team that produces the Premium Edition of syslog-ng has beaten the community project this time, at least in terms of release date.syslog-ng Premium Edition 4F1 (e.g. the first feature release past 4.0) has been released this week. It is the first release of PE in a long time that ...
On CVE-2011-1951: bug or security issue?
Sunday, July 10, 2011 @ 09:07 AM Author: Balázs Scheidler
There's an ongoing debate on the Linux Kernel Mailing List, whether security issues need separate attention. While I agree that distributing available information on security relevance is a good thing, I can also understand the concerns about the "security circus". Being the finder of a security bug has value in one's reputation, and building ...
Log messages in 3d
Sunday, June 26, 2011 @ 09:06 AM Author: Balázs Scheidler
Algernon has created a nice 3d visualization for log messages, 12 days compressed into one and a half minutes of video. Very nice music too :) The post describing how it works is here.
Behind the scenes: syslog-ng 3.3
Monday, June 20, 2011 @ 08:06 PM Author: Balázs Scheidler
I just wanted to let you know, that fixes are nicely coming into the 3.3 beta tree, although it might not be very visible from th outside.So if you consider trying out 3.3, I'd suggest to try a git snapshot instead of the 3.3beta1 tarball.I'm trying to release a beta2 or rc1 in the near ...
Repository for syslog-ng 3rd party modules
Saturday, June 4, 2011 @ 01:06 PM Author: Balázs Scheidler
I long wanted to create a repository to hold things that were not yet integrated into the syslog-ng codebase. Things can happen to be in this phase either because of technical reasons, which are not addressed, or because of lack of time. Surely, if I was maintaining the repository the time issue wouldn't have been ...
syslog-ng in Kindle
Friday, May 20, 2011 @ 06:05 AM Author: Balázs Scheidler
CzP has found out that syslog-ng is used in the Amazon Kindle. Seems like our userbase is in the millions. :)
syslog-ng 3.3 feature freeze, 3.4 branch opened
Sunday, May 1, 2011 @ 10:05 PM Author: Balázs Scheidler
With the recent maintenance policy updates in my last post, I plan quickly release a maintenance version for 3.2 (with version number 3.2.3) and then to concentrate on getting 3.3 into a stable form, starting with a beta release.As a reminder, here are the new features of syslog-ng 3.3:performance improvements:new multi-threaded core that allows syslog-ng ...
Maintenance Policy update for syslog-ng Open Source Editions
Sunday, May 1, 2011 @ 10:05 PM Author: Balázs Scheidler
Dear syslog-ng users,As discussed on the syslog-ng mailing list, the current versioning policies regarding syslog-ng Open Source Edition is confusing, and with the proliferation of syslog-ng versions, their maintenance is an increasing burden on the syslog-ng project. Currently three major versions are supported (3.0, 3.1 and 3.2) and a fourth one (3.3) is in active ...
The 2nd alpha for syslog-ng 3.3 is released
Thursday, March 10, 2011 @ 08:03 PM Author: Balázs Scheidler
I wanted to let you know that a new alpha version for the upcoming syslog-ng version has been published on our website. It is by all means an important step forward, because the new release brings us:It uses multiple threads to do its work, thus capable of scaling to multiple CPUs. Add 'threaded(yes)' to your ...