Red Hat Bugzilla – Bug 488068
RFE: rsyslog rebase to support TLS and conditional filters
Last modified: 2010-11-22 18:16:12 EST
Description of problem: the rsyslog shipped with RHEL does not natively support TLS, and the use of conditional log filters is questionable at best.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. yum install rsyslog
2. rsyslog now requires the use of stunnel for ssl/tls protected logs
3. rsyslog now only partially supports conditional filters.
steps 2 and 3 in this RFE to reproduce.
It would be quite nice if rsyslog could be rebased to 3.x, which has native support for ssl/tls protection for transmitted logs.
This RFE would help meet more stringent logging requirements and protect the data as it passes over the network between remote machines and a centralized logging server. Since rsyslog is not the default logger in RHEL, and rsyslog 3 is backwards compatible with the rsyslog2 style configs it should not be a huge deal to rebase this utility to provide more use and functionality native to the logger.
Using stunnel adds an additional layer of complication and potential failure here. With native encryption support, there's less to configure, less to troubleshoot, and less to break.
Just a ping to keep this alive.
I too would like to see 3.x brought into the mainstream channel. The ability to queue messages to a down syslog server on the local disk is very attractive as well as importing log files from disk into syslog.
No traffic on this at all?
Where did comments 3-10 go from this?
Is anyone from rh going to respond here?
Not sure about the comments. Despite lack of public updates, this is an active request. At this point, I wouldn't worry too much about it being dropped, as there are multiple customers interested in it. I'm sure we'll hear some official words from PM/Eng. before too long.
I'd like to see that rebase too, in my case for support of newer templates.
Is there a developmental/testing package for this similar to the testing kernels that dzickus offers on his rh page?
I would say that this:
is close enough to test with wrt to tls and filters. We will be adding a couple new patches, but they should not affect tls or filters.
~~ Attention Customers and Partners - RHEL 5.5 Beta is now available on RHN ~~
RHEL 5.5 Beta has been released! There should be a fix present in this
release that addresses your request. Please test and report back results
here, by March 3rd 2010 (2010-03-03) or sooner.
Upon successful verification of this request, post your results and update
the Verified field in Bugzilla with the appropriate value.
If you encounter any issues while testing, please describe them and set
this bug into NEED_INFO. If you encounter new defects or have additional
patch(es) to request for inclusion, please clone this bug per each request
and escalate through your support representative.
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.