Logwatch looks for afpd output in "messages", not in log files that afpd writes to
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
logwatch (Ubuntu) |
Triaged
|
Low
|
Unassigned |
Bug Description
[Impact]
Since the changeover to rsyslogd, logwatch has been looking in the wrong places for the logfiles it's supposed to monitor.
Logs that used to go to /var/log/
[Test Case]
# lxc launch ubuntu-daily:cosmic tester
# lxc exec tester bash
# dhclient
# apt update
# apt dist-upgrade -y
# apt install -y logwatch
# echo "Sep 12 01:41:51 xxxxx named[838]: received control channel command 'refresh example.com'
Sep 12 03:34:10 xxxxx smartd[30161]: Monitoring 4 ATA and 0 SCSI devices
Sep 12 03:34:11 xxxxx smartd[30161]: Device: /dev/hdc, 463 Currently unreadable (pending) sectors
Sep 12 03:34:11 xxxxx smartd[30161]: Device: /dev/hdc, 1210 Offline uncorrectable sectors
Sep 12 03:34:11 xxxxx smartd[30161]: Device: /dev/hdd, 1430 Currently unreadable (pending) sectors
Sep 12 03:34:11 xxxxx smartd[30161]: Device: /dev/hdd, 1429 Offline uncorrectable sectors
Sep 12 09:00:00 xxxxx afpd[2383]: login noauth" >> /var/log/syslog
# logwatch --detail medium --range all --service named
# logwatch --detail medium --range all --service smartd
# logwatch --detail medium --range all --service afpd
* None of these commands will display anything.
[Regression Potential]
This has been broken since at least 2011. Logwatch currently doesn't report anything that isn't already pointing to syslog, so there should be no regression potential.
[Original Description]
Binary package hint: logwatch
This on Ubuntu 10.04.2 LTS, logwatch version 7.3.6.cvs200909
Title = "afpd"
LogFile = syslog
LogFile = daemon
LogFile = auth
*OnlyService = afpd
*RemoveHeaders
Related branches
- Christian Ehrhardt (community): Needs Resubmitting
- Canonical Server: Pending requested
- Canonical Server Core Reviewers: Pending requested
-
Diff: 70 lines (+22/-6)6 files modifieddebian/changelog (+8/-0)
debian/dist.conf/logfiles/cron.conf (+4/-3)
debian/dist.conf/logfiles/daemon.conf (+4/-3)
debian/dist.conf/logfiles/kernel.conf (+2/-0)
debian/dist.conf/logfiles/secure.conf (+2/-0)
debian/dist.conf/logfiles/syslog.conf (+2/-0)
Changed in logwatch (Ubuntu): | |
status: | New → Confirmed |
importance: | Undecided → Low |
Changed in logwatch (Ubuntu): | |
assignee: | nobody → Karl Stenerud (kstenerud) |
description: | updated |
Changed in logwatch (Ubuntu): | |
status: | Confirmed → In Progress |
description: | updated |
Changed in logwatch (Ubuntu): | |
assignee: | Karl Stenerud (kstenerud) → nobody |
status: | In Progress → Triaged |
Thank you for taking the time to report this bug and helping to make Ubuntu better.
I confirmed this on a Natty install; logwatch configuration for this service has not changed since lucid.
The only difference is that the daemon log file is no longer used.