Am 21.02.24 um 12:09 schrieb Ralf Schlatterbeck:
Unfortunately this causes logcheck to completely ignore all the remote logs because it matches on a 32-byte timestamp (and the timestamp of the remote machine only has 25 byte).
This is a bug in the logcheck rules, I'd say. It should deal with timestamps having no subseconds resolution.
https://www.rsyslog.com/doc/configuration/properties.htmlI suppose that for remote messages it uses "timereported", which typically uses a resolution in seconds
OpenPGP_signature.asc
Description: OpenPGP digital signature
