Your message dated Sat, 17 Oct 2009 11:54:43 +0100
with message-id <[email protected]>
and subject line Package wflogs has been removed from Debian
has caused the Debian Bug report #285076,
regarding at times produces empty reports because the log files have been
already rotated
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
285076: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=285076
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: wflogs
Version: 0.9.8-2
Severity: normal
On a firewall with a fair bit of activity I noticed that I get empty
reports from wflogs aproximately once in two-three days.
After investigation I think the problem is that /var/log/kern.log
is rotated by the daily syslogd cron job whenever it grows above 1 Mb
_before_ it is scanned by wflogs.
a...@giano:~$ ls -l /etc/cron.daily/
total 23
-rwxr-xr-x 1 root root 89 Oct 9 2002 logrotate
-rwxr-xr-x 1 root root 1307 Jul 27 17:30 sysklogd <- rotation
-rwxr-xr-x 1 root root 1613 Oct 12 22:29 wflogs_email
-rwxr-xr-x 1 root root 3715 Oct 12 22:29 wflogs_report
On system with less activity /var/log/kern.log is rotated by the weekly
job that is normally executed _after_ the daily wflogs.
I think prefixing wflogs scripts with a number (a la 5snort) should fix
the problem.
Cheers,
alessandro
-- System Information:
Debian Release: 3.1
APT prefers testing
APT policy: (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.8-1-k7-smp
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Versions of packages wflogs depends on:
ii debconf 1.4.30.10 Debian configuration management sy
ii libadns1 1.0-8.2 Asynchronous-capable DNS client li
ii libc6 2.3.2.ds1-18 GNU C Library: Shared libraries an
ii libgcc1 1:3.4.2-2 GCC support library
ii libreadline4 4.3-11 GNU readline and history libraries
ii libstdc++5 1:3.3.4-13 The GNU Standard C++ Library v3
ii libwfnetobjs0 0.2.2-1 The WallFire modular firewalling a
-- debconf information excluded
--- End Message ---
--- Begin Message ---
Version: 0.9.8-6.2+rm
You filled the bug http://bugs.debian.org/285076 in Debian BTS
against the package wflogs. I'm closing it at *unstable*, but it will
remain open for older distributions.
For more information about this package's removal, read
http://bugs.debian.org/549214. That bug might give the reasons why
this package was removed and suggestions of possible replacements.
Don't hesitate to reply to this mail if you have any question.
Thank you for your contribution to Debian.
--
Marco Rodrigues
--- End Message ---
