Project

General

Profile

Actions

Bug #1938

closed

suricata: log handling issues

Added by Arturo Borrero Gonzalez about 8 years ago. Updated about 8 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Target version:
Affected Versions:
Effort:
Difficulty:
Label:

Description

Hi,

the log files handling in suricata probably requires a bit of tunning.

In debian, we have two issues with this: * log files rotation (when it happens due to logrotate) * log files reopen (when that happens due to suricata reload)

The second option is specially interesting when running suricata with another user than root.

Two debian related bugs: * https://bugs.debian.org/842049 (suricata loses log output after log rotation) * https://bugs.debian.org/836929 (suricata should drop root privileges when running)

I decided to merge both in a single request here for clarity, given both are related to the same.

Actions

Also available in: Atom PDF