RSYSLOG read the docs

Ok, I said posts in threes so here it is. We all know RYSLOG config is much more painful than syslog-ng but for reasons beyond all of our control, it is readily available for more customers than syslog-ng is today. Thanks to Splunk users I want to share a couple links to better doc to make this not so awful

  • RedHat https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/System_Administrators_Guide/s1-basic_configuration_of_rsyslog.html
  • Usenix https://www.usenix.org/system/files/login/articles/06_lang-online.pdf

thank you @mattymo and @lowell via Splunk Slack chat

Leave a Reply