Please consider registering
September 30, 2012
I have MySQL server and use rsyslog on RHEL to send audit traffic to remote server.
1. MySQL audit have program name mysql-server_auditing (configured in MySQL DB).
Rsyslog configuration stored in file /etc/rsyslog.conf :
if $programname == 'mysql-server_auditing' then @test.mydomain.com:514 (this line will sent UDP traffic)
if $programname == 'mysql-server_auditing' then @@test.mydomain.com:1514 (this line will send TCP traffic)
if $programname == 'mysql-server_auditing' then ~ (this line will select traffic for the next line)
& ~ (this line will remove all selected traffic)
With above configuration you will not log MySQL audit in to the /var/log/messages.
Most Users Ever Online: 31
Currently Browsing this Page:
Guest Posters: 0
Newest Members: Lo0oM
Administrators: Lo0oM (217)