logging-log4j-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Gary Gregory <garydgreg...@gmail.com>
Subject Re: RFC5424 over TCP without TLS
Date Tue, 19 Jan 2016 04:42:12 GMT
On Mon, Jan 18, 2016 at 8:41 PM, Ralph Goers <ralph.goers@dslextreme.com>
wrote:

> I would not do that. Just use the SocketAppender with the RFC5424Layout
> configured however they want.
>

Ah! I just replied the same. Perhaps we need some better docs?

Gary


>
> Ralph
>
> > On Jan 18, 2016, at 6:29 PM, Gary Gregory <garydgregory@gmail.com>
> wrote:
> >
> > So going back to your original issue. You're basically asking for the
> > method SyslogAppender.createAppender(...) to take an
> > optional useTlsMessageFormat boolean to override what the method computes
> > based on protocol and sslConfig. Seems like an easy way for users to
> shoot
> > themselves in the foot... and also for the SyslogAppender to make itself
> > non-compliant to the RFC.
> >
> > I wonder if we need an ExtendedSyslogAppender where the user can override
> > this kind of setting with it being documented as a non-RFC-conforming
> > appender.
> >
> > Ralph?
> >
> > Gary
> >
> > On Mon, Jan 18, 2016 at 5:20 PM, Blake Day <blake@chewy.com> wrote:
> >
> >> You can configure rsyslog or syslog-ng to use the regular TCP protocol
> >> without framing, but then you lose support for multi-line logs.
> >>
> >>
> >>
> >> On 1/18/16, 7:47 PM, "Ralph Goers" <ralph.goers@dslextreme.com> wrote:
> >>
> >>> When I wrote the SyslogAppender and RFC5424Layout I am pretty sure I
> >> tested it with syslog-ng. At that time we didn’t support TLS, so I
> wasn’t
> >> adding a TLSSyslogFrame. I don’t recall having any problems with that or
> >> with rsyslog.
> >>>
> >>> Ralph
> >>>
> >>>> On Jan 18, 2016, at 5:42 PM, Gary Gregory <garydgregory@gmail.com>
> >> wrote:
> >>>>
> >>>> What about using a <SyslogAppender> with a <Rfc5424Layout>?
> >>>>
> >>>> Gary
> >>>>
> >>>> On Mon, Jan 18, 2016 at 3:17 PM, Blake Day <blake@chewy.com> wrote:
> >>>>
> >>>>> It was worth a look, but no. SocketAppender creates an
> SslSocketManager
> >>>>> when protocol = SSL.
> >>>>>
> >>>>>
> >>>>>
> >>>>>
> >>>>> On 1/18/16, 5:46 PM, "Gary Gregory" <garydgregory@gmail.com>
wrote:
> >>>>>
> >>>>>> I think you might be able to "cheat" by saying protocol="SSL"
on the
> >>>>>> appender...
> >>>>>>
> >>>>>> Gary
> >>>>>>
> >>>>>> On Mon, Jan 18, 2016 at 2:07 PM, Blake Day <blake@chewy.com>
wrote:
> >>>>>>
> >>>>>>> Hi all,
> >>>>>>>
> >>>>>>> We are trying to achieve RFC5424 message formats over TCP
transport
> >>>>>>> without TLS.
> >>>>>>>
> >>>>>>> As you may know, SyslogAppender uses an instance of Rfc5424Layout
> to
> >>>>>>> provide the logging layout.  That layout takes a parameter
called
> >>>>>>> “useTlsMessageFormat”, which SyslogAppender sets based
on whether
> >> TLS is
> >>>>>>> configured.  When true, the layout wraps the log event in
a
> >>>>>>> TlsSyslogFrame.  TlsSyslogFrame simply prepends a length
to the
> full
> >> log
> >>>>>>> message, but that length is required by syslog-ng to frame
RFC5424
> >>>>>>> messages.  While the RFC for TCP-based transport of the
RFC5424
> >> format
> >>>>> does
> >>>>>>> not allow for non-TLS connections, some users (like us)
would like
> to
> >>>>> adopt
> >>>>>>> the RFC5424 format over TCP *without* TLS.  We believe,
but have
> not
> >>>>>>> tested, that we could do this by simply adding a configuration
> >>>>> parameter to
> >>>>>>> the SyslogAppender that allows us to override useTlsMessageFormat
> to
> >>>>> true.
> >>>>>>>
> >>>>>>> Any thoughts on this change?  Have we overlooked an obvious
> >> alternative
> >>>>> to
> >>>>>>> achieving RFC5424 over TCP without TLS?
> >>>>>>>
> >>>>>>> Thanks,
> >>>>>>>
> >>>>>>> Michael Day
> >>>>>>>
> >>>>>>>
> >>>>>>
> >>>>>>
> >>>>>> --
> >>>>>> E-Mail: garydgregory@gmail.com | ggregory@apache.org
> >>>>>> Java Persistence with Hibernate, Second Edition
> >>>>>> <http://www.manning.com/bauer3/>
> >>>>>> JUnit in Action, Second Edition <http://www.manning.com/tahchiev/>
> >>>>>> Spring Batch in Action <http://www.manning.com/templier/>
> >>>>>> Blog: http://garygregory.wordpress.com
> >>>>>> Home: http://garygregory.com/
> >>>>>> Tweet! http://twitter.com/GaryGregory
> >>>>>
> >>>>
> >>>>
> >>>>
> >>>> --
> >>>> E-Mail: garydgregory@gmail.com | ggregory@apache.org
> >>>> Java Persistence with Hibernate, Second Edition
> >>>> <http://www.manning.com/bauer3/>
> >>>> JUnit in Action, Second Edition <http://www.manning.com/tahchiev/>
> >>>> Spring Batch in Action <http://www.manning.com/templier/>
> >>>> Blog: http://garygregory.wordpress.com
> >>>> Home: http://garygregory.com/
> >>>> Tweet! http://twitter.com/GaryGregory
> >>>
> >>>
> >>>
> >>> ---------------------------------------------------------------------
> >>> To unsubscribe, e-mail: log4j-user-unsubscribe@logging.apache.org
> >>> For additional commands, e-mail: log4j-user-help@logging.apache.org
> >>>
> >>
> >> ---------------------------------------------------------------------
> >> To unsubscribe, e-mail: log4j-user-unsubscribe@logging.apache.org
> >> For additional commands, e-mail: log4j-user-help@logging.apache.org
> >>
> >>
> >
> >
> > --
> > E-Mail: garydgregory@gmail.com | ggregory@apache.org
> > Java Persistence with Hibernate, Second Edition
> > <http://www.manning.com/bauer3/>
> > JUnit in Action, Second Edition <http://www.manning.com/tahchiev/>
> > Spring Batch in Action <http://www.manning.com/templier/>
> > Blog: http://garygregory.wordpress.com
> > Home: http://garygregory.com/
> > Tweet! http://twitter.com/GaryGregory
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: log4j-user-unsubscribe@logging.apache.org
> For additional commands, e-mail: log4j-user-help@logging.apache.org
>
>


-- 
E-Mail: garydgregory@gmail.com | ggregory@apache.org
Java Persistence with Hibernate, Second Edition
<http://www.manning.com/bauer3/>
JUnit in Action, Second Edition <http://www.manning.com/tahchiev/>
Spring Batch in Action <http://www.manning.com/templier/>
Blog: http://garygregory.wordpress.com
Home: http://garygregory.com/
Tweet! http://twitter.com/GaryGregory

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message