MITIM BlogMay 23
New post ✍🏻
Syslog even as an older technology is still required. For machines or appliances that can't (or I don't want to) install XDR this variant of monitoring is one of fewer ones left.
https://www.mitim.net/2025/05/useful-virtual-machine-for-cyber-security-syslog?g=5
#Syslog #Virtualization #VirtualMachine #CyberSecurity #Docker #MikroTik #Proxmox #Debian
BSI WID Advisories FeedMay 8

#BSI WID-SEC-2025-0962: [NEU] [mittel] #Syslog-ng: Schwachstelle ermöglicht Umgehung von Sicherheitsmechanismen

Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Syslog-ng ausnutzen, um Sicherheitsmechanismen zu umgehen.

https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0962

Warn- und Informationsdienst

AskUbuntuMay 5

Systemd[1] running Lynis automatically? #2204 #systemd #syslog #lynis

https://askubuntu.com/q/1547164/612

Systemd[1] running Lynis automatically?

I am a very casual Ubuntu user so forgive my lack of knowledge. I haven't seen this question posted anywhere else. I have largely stayed up-to-date with updates other than not upgrading yet to LTS ...

Ask Ubuntu
Peter CzanikApr 15

The @FreeBSDFoundation 15 release schedule was just announced, but I already see people saying that "looks good, I already use it in production" :-) So, I installed the latest snapshot in a VM, and tested #syslog_ng on it.

As expected: syslog-ng works fine on it :-)

#FreeBSD #syslog

raspbeguyMar 23

I'm really surprised that log/syslog, the official go library implementing syslog, is:

  • Using the old RFC 3164 instead of the newer RFC 5424. I understand the need to support legacy stuff, but having a recent language support legacy as only option is surprising.

  • Not even fully compliant with RFC 3164, as stated by this issue. This sucks because stuff like @grafana Alloy isn't parsing it.

    • #go #golang #syslog #rfc

    log/syslog: generated syslog format is not RFC-compliant · Issue #66666 · golang/go

    Go version go version go1.22.1 linux/amd64 Output of go env in your module/workspace: GO111MODULE='' GOARCH='amd64' GOBIN='' GOEXE='' GOEXPERIMENT='' GOFLAGS='' GOHOSTARCH='amd64' GOHOSTOS='linux' ...

    GitHub
    Gea-Suan LinMar 19

    把 rsyslog 訊息串到 Slack 與 Pushover 上

    把之前想弄的東西弄出來了,直接在 rsyslog 上設定條件,然後串到 Slack 以及 Pushover 上。 rsyslog 這邊有不少眉眉角角要處理,本來查到 omhttp,想直接透過 omhttp 打到 HTTPS endpoint,但發現 omhttp 沒有也沒打算包進標準套件裡面 (因為不是由官方開發的),但文件上面有... 在 2018 年的「rsyslogd: could not load module 'omhttp' #3302」這邊就有提到這個問題了: Sadly, the omhttp module is currently not part of the def…

    https://blog.gslin.org/archives/2025/03/20/12312/%e6%8a%8a-rsyslog-%e8%a8%8a%e6%81%af%e4%b8%b2%e5%88%b0-slack-%e8%88%87-pushover-%e4%b8%8a/

    #api #apparmor #curl #omhttp #omprog #pushover #rsyslog #rsyslogd #script #shell #slack #syslog #webhook

    把 rsyslog 訊息串到 Slack 與 Pushover 上

    把之前想弄的東西弄出來了,直接在 rsyslog 上設定條件,然後串到 Slack 以及 Pushover 上。 rsyslog 這邊有不少眉眉角角要處理,本來查到 omhttp,想直接透過 omhttp 打到 HTTPS endpoint,但發現 omhttp 沒有也沒打算包進標準套件裡面 (因為...

    Gea-Suan Lin's BLOG
    EmoryMar 14

    howard's being brilliant again and there's a new release of a great #macOS tool for #logs called #LogUI.

    > Although my log browser Ulbow gives much better access, for many it’s still a daunting task. I’ve now switched almost entirely to using my new lightweight log browser, LogUI, and here explain how you can use it. Although it’s currently an early release with limited features, you should find it ideal for getting started.

    \o/
    #householdIT #syslog #infosec https://eclecticlight.co/2025/03/14/browse-your-macs-log-with-logui/

    Browse your Mac’s log with LogUI

    Get started browsing your Mac’s log using this lightweight and friendly utility. A walkthrough looking at what happened when I launched an app.

    The Eclectic Light Company
    Joachim WibergMar 3

    Fresh from the oven, the BSD syslogd for Linux project, sysklogd v2.7.1

    https://github.com/troglobit/sysklogd/releases/tag/v2.7.1

    #syslog #OpenSource #linux #logging

    Release sysklogd v2.7.1 · troglobit/sysklogd

    Changes Update syslogd -T documentation, it applies to messages originating both locally and from remote syslog servers, issue #93 Fixes Fix #99: hostname filtering support, introduced in v2.7.0...

    GitHub
    SecPointFeb 28

    🚀 SecPoint® Penetrator – Streamline Your Security with Syslog Integration!

    💻 Check out our video showcasing Syslog integration in action!
    🎥 https://www.youtube.com/watch?v=4n6dXX4OCkY

    💬 Stay Connected:
    🔹 Twitter (X): https://x.com/secpoint
    🔹 LinkedIn: https://www.linkedin.com/company/secpoint

    #CyberSecurity #Syslog #VulnerabilityScanning #SecPoint #Penetrator #NetworkSecurity #Infosec #EthicalHacking 🚀

    SecPoint Penetrator Syslog Reporting

    YouTube
    HabrFeb 19

    [Перевод] Логирование на Mac и команда log: руководство для администраторов Apple

    Логирование на Mac и команда log: руководство для администраторов Apple Как администратор IT-инфраструктуры, вы наверняка не раз сталкивались с необходимостью проверять логи для диагностики проблем. Логи — это своего рода "история" системы, которая помогает не только устранять неполадки, но и понимать, почему система ведет себя тем или иным образом.

    https://habr.com/ru/companies/ringo_mdm/articles/883500/

    #логирование #macos #apple #журналирование #логи #администрирование_apple #администрирование_mac_os #logging #syslog

    Логирование на Mac и команда log: руководство для администраторов Apple

    Этот материал не дословный, а свободный перевод с дополнениями от команды Ринго . Мы актуализировали команды для свежих версий macOS и добавили примеры, чтобы сделать руководство более полезным для...

    Хабр