Add journalctl for ssh by default

author Manuel Sabban <github@sabban.eu>

Wed, 28 Jun 2023 08:23:40 +0000 (10:23 +0200)

committer Cyril Brulebois <cyril@debamax.com>

Sun, 14 Jul 2024 02:35:08 +0000 (04:35 +0200)
author Manuel Sabban <github@sabban.eu>
Wed, 28 Jun 2023 08:23:40 +0000 (10:23 +0200)
committer Cyril Brulebois <cyril@debamax.com>
Sun, 14 Jul 2024 02:35:08 +0000 (04:35 +0200)
diff --git a/config/acquis.yaml b/config/acquis.yaml

index cc3631f3ee2fb53bc6e591c5f8b2ccfc68008ae7..f0f9995b394b86bb2a79b16a5ce31d3f5e95afe2 100644 (file)
--- a/config/acquis.yaml
+++ b/config/acquis.yaml
@@ -11,6 +11,12 @@ filenames:
  labels:
    type: syslog
  ---
+source: journalctl
+journalctl_filter:
+ - "_SYSTEMD_UNIT=ssh.service"
+labels:
+  type: syslog
+---
  filename: /var/log/apache2/*.log
  labels:
    type: apache2
author	Manuel Sabban <github@sabban.eu>
	Wed, 28 Jun 2023 08:23:40 +0000 (10:23 +0200)
committer	Cyril Brulebois <cyril@debamax.com>
	Sun, 14 Jul 2024 02:35:08 +0000 (04:35 +0200)