1 # This is a sample syslog.conf fragment for use with Sudo.
3 # By default, sudo logs to "authpriv" if your system supports it, else it
4 # uses "auth". The facility can be set via the --with-logfac configure
5 # option or in the sudoers file.
6 # To see what syslog facility a sudo binary uses, run `sudo -V' as *root*.
9 # The whitespace in the following line is made up of <TAB>
10 # characters, *not* spaces. You cannot just cut and paste!
12 # If you edit syslog.conf you need to send syslogd a HUP signal.
13 # Ie: kill -HUP process_id
15 # Syslogd will not create new log files for you, you must first
16 # create the file before syslogd will log to it. Eg.
17 # 'touch /var/log/sudo'
19 # This logs successful and failed sudo attempts to the file /var/log/auth
20 # If your system has the authpriv syslog facility, use authpriv.debug
21 auth.debug /var/log/auth
23 # To log to a remote machine, use something like the following,
24 # where "loghost" is the name of the remote machine.
25 # If your system has the authpriv syslog facility, use authpriv.debug