logging-log4j-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Gary Gregory <garydgreg...@gmail.com>
Subject Re: RFC5424 over TCP without TLS
Date Tue, 19 Jan 2016 04:41:25 GMT
Ah, right, so one can just configure a <SocketAppender> with a
<Rfc5424Layout> configured in a non-standard way with useTlsMessageFormat =
"false".

Gary

On Mon, Jan 18, 2016 at 8:35 PM, Ralph Goers <ralph.goers@dslextreme.com>
wrote:

> As I have stated before, that’s because the SyslogAppender is really
> nothing more than the SocketAppender with one of the two Syslog Layouts
> hardwired to it.
>
> Ralph
>
> > On Jan 18, 2016, at 6:24 PM, Gary Gregory <garydgregory@gmail.com>
> wrote:
> >
> > Hm, yeah, you cannot pass a layout to a SyslogAppender. Dead end there.
> >
> > Gary
> >
> > On Mon, Jan 18, 2016 at 5:02 PM, Blake Day <blake@chewy.com <mailto:
> blake@chewy.com>> wrote:
> >
> >> So you mean a <SocketAppender>?  The layout is “hardcoded” on
> >> SyslogAppender.
> >>
> >>
> >>
> >>
> >> On 1/18/16, 7:42 PM, "Gary Gregory" <garydgregory@gmail.com> wrote:
> >>
> >>> What about using a <SyslogAppender> with a <Rfc5424Layout>?
> >>>
> >>> Gary
> >>>
> >>> On Mon, Jan 18, 2016 at 3:17 PM, Blake Day <blake@chewy.com> wrote:
> >>>
> >>>> It was worth a look, but no. SocketAppender creates an
> SslSocketManager
> >>>> when protocol = SSL.
> >>>>
> >>>>
> >>>>
> >>>>
> >>>> On 1/18/16, 5:46 PM, "Gary Gregory" <garydgregory@gmail.com> wrote:
> >>>>
> >>>>> I think you might be able to "cheat" by saying protocol="SSL" on
the
> >>>>> appender...
> >>>>>
> >>>>> Gary
> >>>>>
> >>>>> On Mon, Jan 18, 2016 at 2:07 PM, Blake Day <blake@chewy.com>
wrote:
> >>>>>
> >>>>>> Hi all,
> >>>>>>
> >>>>>> We are trying to achieve RFC5424 message formats over TCP transport
> >>>>>> without TLS.
> >>>>>>
> >>>>>> As you may know, SyslogAppender uses an instance of Rfc5424Layout
to
> >>>>>> provide the logging layout.  That layout takes a parameter called
> >>>>>> “useTlsMessageFormat”, which SyslogAppender sets based on
whether
> >> TLS is
> >>>>>> configured.  When true, the layout wraps the log event in a
> >>>>>> TlsSyslogFrame.  TlsSyslogFrame simply prepends a length to
the full
> >> log
> >>>>>> message, but that length is required by syslog-ng to frame RFC5424
> >>>>>> messages.  While the RFC for TCP-based transport of the RFC5424
> >> format
> >>>> does
> >>>>>> not allow for non-TLS connections, some users (like us) would
like
> to
> >>>> adopt
> >>>>>> the RFC5424 format over TCP *without* TLS.  We believe, but
have not
> >>>>>> tested, that we could do this by simply adding a configuration
> >>>> parameter to
> >>>>>> the SyslogAppender that allows us to override useTlsMessageFormat
to
> >>>> true.
> >>>>>>
> >>>>>> Any thoughts on this change?  Have we overlooked an obvious
> >> alternative
> >>>> to
> >>>>>> achieving RFC5424 over TCP without TLS?
> >>>>>>
> >>>>>> Thanks,
> >>>>>>
> >>>>>> Michael Day
> >>>>>>
> >>>>>>
> >>>>>
> >>>>>
> >>>>> --
> >>>>> E-Mail: garydgregory@gmail.com | ggregory@apache.org
> >>>>> Java Persistence with Hibernate, Second Edition
> >>>>> <http://www.manning.com/bauer3/>
> >>>>> JUnit in Action, Second Edition <http://www.manning.com/tahchiev/>
> >>>>> Spring Batch in Action <http://www.manning.com/templier/>
> >>>>> Blog: http://garygregory.wordpress.com
> >>>>> Home: http://garygregory.com/
> >>>>> Tweet! http://twitter.com/GaryGregory
> >>>>
> >>>
> >>>
> >>>
> >>> --
> >>> E-Mail: garydgregory@gmail.com | ggregory@apache.org
> >>> Java Persistence with Hibernate, Second Edition
> >>> <http://www.manning.com/bauer3/>
> >>> JUnit in Action, Second Edition <http://www.manning.com/tahchiev/>
> >>> Spring Batch in Action <http://www.manning.com/templier/>
> >>> Blog: http://garygregory.wordpress.com
> >>> Home: http://garygregory.com/
> >>> Tweet! http://twitter.com/GaryGregory
> >>
> >
> >
> >
> > --
> > E-Mail: garydgregory@gmail.com <mailto:garydgregory@gmail.com> |
> ggregory@apache.org <mailto:ggregory@apache.org>
> > Java Persistence with Hibernate, Second Edition
> > <http://www.manning.com/bauer3/ <http://www.manning.com/bauer3/>>
> > JUnit in Action, Second Edition <http://www.manning.com/tahchiev/ <
> http://www.manning.com/tahchiev/>>
> > Spring Batch in Action <http://www.manning.com/templier/ <
> http://www.manning.com/templier/>>
> > Blog: http://garygregory.wordpress.com <
> http://garygregory.wordpress.com/>
> > Home: http://garygregory.com/ <http://garygregory.com/>
> > Tweet! http://twitter.com/GaryGregory <http://twitter.com/GaryGregory>
>



-- 
E-Mail: garydgregory@gmail.com | ggregory@apache.org
Java Persistence with Hibernate, Second Edition
<http://www.manning.com/bauer3/>
JUnit in Action, Second Edition <http://www.manning.com/tahchiev/>
Spring Batch in Action <http://www.manning.com/templier/>
Blog: http://garygregory.wordpress.com
Home: http://garygregory.com/
Tweet! http://twitter.com/GaryGregory

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message