Well, although I'm not BIND author or developer: my understanding is that there's always compatibility with syslog. (should be..) and that you can send a lot of messages with various syslog priorities to different files... Splitting all the info to channels makes sense, because you can separate roles: -sysadmins receive errors from daemon and system -dns admins receive errors from zone compilation and other DNS probs.. Also I think the main reason is to separate debug info from standard syslog messages.. (you can debug more apps on one system this way) as I was testing Bind9 with debug on it produced 3-4 pages just by starting.. and I used it on a standalone system.. (no zone transfers, no dns requests, no notifies, no auth..) with zone-transfers&co you get this junk every moment and it makes sense to separate it from standard syslog output (fx. info -> file crit, err->syslog), unless you want your logs filled pretty fast :) kr lubo -----Ursprüngliche Nachricht----- Von: Tina Bird [mailto:tbird@precision-guesswork.com] Gesendet: Dienstag, 23. Juli 2002 02:43 An: Log Analysis Mailing List Betreff: [logs] discussion of BIND logging hi list -- i'm still procrastinating with the list move, but i'll be working on it tonight and tomorrow. in the meantime, i'm revising my log analysis class for the october SANS network security class (if you're in DC, take a look). i've found a great deal of information about the configuration of logging in BIND -- turns out that it duplicates a lot of syslog functionality: http://triton.process.com/bind-docs/logging.html there's also a pretty interesting discussion of how the logging works and some of the coding decisions from the BIND workers' mailing list: http://marc.theaimsgroup.com/?l=bind9-workers&m=102716068411351&w=2 if anyone out there has ideas about why there's so much duplication of functionality, i'd love to know! tbird "The road of excess leads to the palace of wisdom." William Blake, "Proverbs of Hell" http://www.shmoo.com/~tbird Log Analysis http://www.counterpane.com/log-analysis.html VPN http://vpn.shmoo.com --------------------------------------------------------------------- To unsubscribe, e-mail: loganalysis-unsubscribeat_private For additional commands, e-mail: loganalysis-helpat_private *********************************************************** Neu bei STAR 21 NETWORKS *********************************************************** STAR 21 NETWORKS Internet Zugang jetzt auch mit DSL und attraktiven, echten Flatrates Mit der Einführung von DSL zum 1. Juli 2002 werden die volumenabhängigen INTERNET ACCESS-Tarife abgeschafft und kundenfreundliche Flatrate-Tarife für alle Bandbreiten zwischen 384 Kbit/s und 6 Mbit/s eingeführt, die ausschließlich mit gleicher Upstream- und Downstream-Geschwindigkeit angeboten werden. Alle weiteren Infos unter: www.star21networks.de <http://www.star21networks.de/> infoat_private oder über unsere Service Hotline unter 0 800 - 1 00 73 40. --------------------------------------------------------------------- To unsubscribe, e-mail: loganalysis-unsubscribeat_private For additional commands, e-mail: loganalysis-helpat_private
This archive was generated by hypermail 2b30 : Tue Jul 23 2002 - 13:57:13 PDT