DeltaWingDragon@sh.itjust.works to Linux@lemmy.ml · 4 months agoIs it good practice to run a system without a syslog daemon?message-squaremessage-square11fedilinkarrow-up125arrow-down11file-text
arrow-up124arrow-down1message-squareIs it good practice to run a system without a syslog daemon?DeltaWingDragon@sh.itjust.works to Linux@lemmy.ml · 4 months agomessage-square11fedilinkfile-text
If I’m using Arch or another minimal distro, is it a good idea to install a syslog daemon? Or can I go without?
minus-squareMactan@lemmy.mllinkfedilinkarrow-up1·4 months agowish I knew how to use the journal, seems like there isn’t any good way to just search the previous session’s logs without a mountain of fuss or having to guess file names
minus-squareMummifiedClient5000@feddit.dklinkfedilinkEnglisharrow-up2·4 months agoCheck that you actually have persistent storage enabled. (See man journald.conf and search for Storage) Read up on the numerous parameters to journalctl. (man journalctl) journalctl --boot -2 will show logs from previous boot. journalctl --since "-2 weeks" --unit=sshd last two weeks worth of sshd logs.
wish I knew how to use the journal, seems like there isn’t any good way to just search the previous session’s logs without a mountain of fuss or having to guess file names
Check that you actually have persistent storage enabled. (See
man journald.confand search forStorage)Read up on the numerous parameters to journalctl. (
man journalctl)journalctl --boot -2will show logs from previous boot.journalctl --since "-2 weeks" --unit=sshdlast two weeks worth of sshd logs.